d52eb9750edf4f2b85210f569fd5301af4766147508d1506918c3d89dcf2c015 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d52eb9750edf4f2b85210f569fd5301af4766147508d1506918c3d89dcf2c015
Size

48KB
Sample

241009-d8v67awbpe
MD5

7464b33d2930da567b39e6ea3ae8ea9a
SHA1

d983e1024296248c65ba77df5d0ac4f2b1843824
SHA256

d52eb9750edf4f2b85210f569fd5301af4766147508d1506918c3d89dcf2c015
SHA512

779313b97b0a5d52492cee12fd76447c0dfbfd21cd290fedada848e21d95ac1eebd4feee1bed20d4656fae0ac68233cc919b9da6983a92173aa0dd4fcac743f8
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITK:26Q0ElP6G+gBQMOtEvwDpjgWMl7TK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d52eb9750edf4f2b85210f569fd5301af4766147508d1506918c3d89dcf2c015
- Size
  
  48KB
- MD5
  
  7464b33d2930da567b39e6ea3ae8ea9a
- SHA1
  
  d983e1024296248c65ba77df5d0ac4f2b1843824
- SHA256
  
  d52eb9750edf4f2b85210f569fd5301af4766147508d1506918c3d89dcf2c015
- SHA512
  
  779313b97b0a5d52492cee12fd76447c0dfbfd21cd290fedada848e21d95ac1eebd4feee1bed20d4656fae0ac68233cc919b9da6983a92173aa0dd4fcac743f8
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITK:26Q0ElP6G+gBQMOtEvwDpjgWMl7TK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2