b6b0962524fc76765b9fe8d551b50d225d664a3d01774f36c8dc0f8b00f4a365 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6b0962524fc76765b9fe8d551b50d225d664a3d01774f36c8dc0f8b00f4a365
Size

57KB
Sample

241010-a8rl8aybml
MD5

43b95c35ab0b5350d9252ad005628119
SHA1

54373ad2d45cc635432e82b887374f8d4ac766a2
SHA256

b6b0962524fc76765b9fe8d551b50d225d664a3d01774f36c8dc0f8b00f4a365
SHA512

25209e00c8deb19dd5fadd233f7e4ed8d0f14ba9c6c24e37c0ae4097a28d62393e7db9c110468a03135bf36d98552957859216ff4945b5a10548d73f47076367
SSDEEP

384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlFIbF2:aePG5H8XhKD8ISZQjkgs1lxlFkg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b6b0962524fc76765b9fe8d551b50d225d664a3d01774f36c8dc0f8b00f4a365
- Size
  
  57KB
- MD5
  
  43b95c35ab0b5350d9252ad005628119
- SHA1
  
  54373ad2d45cc635432e82b887374f8d4ac766a2
- SHA256
  
  b6b0962524fc76765b9fe8d551b50d225d664a3d01774f36c8dc0f8b00f4a365
- SHA512
  
  25209e00c8deb19dd5fadd233f7e4ed8d0f14ba9c6c24e37c0ae4097a28d62393e7db9c110468a03135bf36d98552957859216ff4945b5a10548d73f47076367
- SSDEEP
  
  384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxlFIbF2:aePG5H8XhKD8ISZQjkgs1lxlFkg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2