9582ad9733e2fc4e4ab5da403818d700db43c5c3954c0d796081392df0697ca9 | Triage

Sharing

General

Target

9582ad9733e2fc4e4ab5da403818d700db43c5c3954c0d796081392df0697ca9N
Size

44KB
Sample

241012-nyjerayeng
MD5

b3963af1647198e3dd249a0f3b1d7f20
SHA1

a8e698ea1cec07ca6dd5b6ae02207369a3c955b3
SHA256

9582ad9733e2fc4e4ab5da403818d700db43c5c3954c0d796081392df0697ca9
SHA512

f365f35f6ab43e0f9714500ed744d23d72bb5996afd3df6a8c01212dd3944757ed1cf3aa4f9d2a825e1849e774be87ade8ba97bedadbb0e78df4e72773580d3d
SSDEEP

768:bQyC4GyNM01GuQMNXwXOQ69zbjlAAX5e9zr4:bQpYayGiAizbR9Xwzc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  9582ad9733e2fc4e4ab5da403818d700db43c5c3954c0d796081392df0697ca9N
- Size
  
  44KB
- MD5
  
  b3963af1647198e3dd249a0f3b1d7f20
- SHA1
  
  a8e698ea1cec07ca6dd5b6ae02207369a3c955b3
- SHA256
  
  9582ad9733e2fc4e4ab5da403818d700db43c5c3954c0d796081392df0697ca9
- SHA512
  
  f365f35f6ab43e0f9714500ed744d23d72bb5996afd3df6a8c01212dd3944757ed1cf3aa4f9d2a825e1849e774be87ade8ba97bedadbb0e78df4e72773580d3d
- SSDEEP
  
  768:bQyC4GyNM01GuQMNXwXOQ69zbjlAAX5e9zr4:bQpYayGiAizbR9Xwzc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2