df85f7f830dc3f0a2834eeb1e18847fc1ce463051e4f1e48e644a61527473e49 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

df85f7f830dc3f0a2834eeb1e18847fc1ce463051e4f1e48e644a61527473e49
Size

22KB
Sample

241010-cv2lda1anj
MD5

da8c035cda6aa081d2e102ed080b45ac
SHA1

bb1b06332d383af229c73f65f8fd2a07b390fb59
SHA256

df85f7f830dc3f0a2834eeb1e18847fc1ce463051e4f1e48e644a61527473e49
SHA512

ece4e087ffa9cff49695543c3c1d1a24a65789d2fb9f512d21df38557fbffe090bce401ac208f54bb73cebf5eea66b4e32eaa580b6d63fedd780181be72b5723
SSDEEP

384:twPmgHNs0HDT2rLEqYFa9CEacNRF4qCG66nVPaRAQF:uPHGuSrB0EakzhCG617F

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  df85f7f830dc3f0a2834eeb1e18847fc1ce463051e4f1e48e644a61527473e49
- Size
  
  22KB
- MD5
  
  da8c035cda6aa081d2e102ed080b45ac
- SHA1
  
  bb1b06332d383af229c73f65f8fd2a07b390fb59
- SHA256
  
  df85f7f830dc3f0a2834eeb1e18847fc1ce463051e4f1e48e644a61527473e49
- SHA512
  
  ece4e087ffa9cff49695543c3c1d1a24a65789d2fb9f512d21df38557fbffe090bce401ac208f54bb73cebf5eea66b4e32eaa580b6d63fedd780181be72b5723
- SSDEEP
  
  384:twPmgHNs0HDT2rLEqYFa9CEacNRF4qCG66nVPaRAQF:uPHGuSrB0EakzhCG617F
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2