6e9e35a4194f68e428cc1913d72779485c5e5a1539c6c31b11cd78b648534d09 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6e9e35a4194f68e428cc1913d72779485c5e5a1539c6c31b11cd78b648534d09N
Size

72KB
Sample

241006-m1rngazfpm
MD5

47048168b2f839834140a2b97c705630
SHA1

5d517a2eb0d58faa8237737ce11dc8679f3b70a8
SHA256

6e9e35a4194f68e428cc1913d72779485c5e5a1539c6c31b11cd78b648534d09
SHA512

ee1a746ad5772c80075129173a306a9128d151442ff672a67fc52e48916162fd9bc0c71b26db5b77ffd1c391787b141cfb7ab7078fd4e4202b3d908a60c7e051
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1PB:X6a+SOtEvwDpjBZYvQd25

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6e9e35a4194f68e428cc1913d72779485c5e5a1539c6c31b11cd78b648534d09N
- Size
  
  72KB
- MD5
  
  47048168b2f839834140a2b97c705630
- SHA1
  
  5d517a2eb0d58faa8237737ce11dc8679f3b70a8
- SHA256
  
  6e9e35a4194f68e428cc1913d72779485c5e5a1539c6c31b11cd78b648534d09
- SHA512
  
  ee1a746ad5772c80075129173a306a9128d151442ff672a67fc52e48916162fd9bc0c71b26db5b77ffd1c391787b141cfb7ab7078fd4e4202b3d908a60c7e051
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1PB:X6a+SOtEvwDpjBZYvQd25
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2