1b37c198e9cb8ac818cdd1d7ad69bb7b9e56ce57d902a418ab366a696db1e8d7 | Triage

Sharing

General

Target

1b37c198e9cb8ac818cdd1d7ad69bb7b9e56ce57d902a418ab366a696db1e8d7N
Size

50KB
Sample

241012-3mb9masalk
MD5

61be83c4ca506caa976d93c9489d87b0
SHA1

685e61f6f739de353ce2508b78780b45383d1ba0
SHA256

1b37c198e9cb8ac818cdd1d7ad69bb7b9e56ce57d902a418ab366a696db1e8d7
SHA512

235373c8fa52a42da0d0cc5646c239abf4a21a8284299045335388078adeb2d2d2fc0512f06629f3817c2cdd9f69f0385f226f92629386c9063152350803a395
SSDEEP

768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJ6An:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfpn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1b37c198e9cb8ac818cdd1d7ad69bb7b9e56ce57d902a418ab366a696db1e8d7N
- Size
  
  50KB
- MD5
  
  61be83c4ca506caa976d93c9489d87b0
- SHA1
  
  685e61f6f739de353ce2508b78780b45383d1ba0
- SHA256
  
  1b37c198e9cb8ac818cdd1d7ad69bb7b9e56ce57d902a418ab366a696db1e8d7
- SHA512
  
  235373c8fa52a42da0d0cc5646c239abf4a21a8284299045335388078adeb2d2d2fc0512f06629f3817c2cdd9f69f0385f226f92629386c9063152350803a395
- SSDEEP
  
  768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJ6An:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfpn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2