ad800506b0ad30124414625b70affa3f9ab255786d65856d608161d99523af0d | Triage

Sharing

General

Target

Debug.exe
Size

1.6MB
Sample

241012-pqqpjaveml
MD5

28e301ade0cca0603de23c581d332eeb
SHA1

5e01dfe21043ecd21354f9f34b0c5c08174ac66f
SHA256

ad800506b0ad30124414625b70affa3f9ab255786d65856d608161d99523af0d
SHA512

3e7b6f63eb44313b8e519c71bfcb93c347f39a0b69cbead689832d3d8a1c1bb006f52ec21ecfa94ef32416402f514a73442564018d0e63b7cf22c0715195a8c0
SSDEEP

24576:xuDXTIGaPhEYzUzA0/0hWiAAC0W5y/I9qGDDe8svBIZ9Ysi6/RA2+IGuOR2bh/2m:kDjlabwz9IW0wPqiMmqsjRSxqEm

Score

7^/10

Malware Config

Targets

- Target
  
  Debug.exe
- Size
  
  1.6MB
- MD5
  
  28e301ade0cca0603de23c581d332eeb
- SHA1
  
  5e01dfe21043ecd21354f9f34b0c5c08174ac66f
- SHA256
  
  ad800506b0ad30124414625b70affa3f9ab255786d65856d608161d99523af0d
- SHA512
  
  3e7b6f63eb44313b8e519c71bfcb93c347f39a0b69cbead689832d3d8a1c1bb006f52ec21ecfa94ef32416402f514a73442564018d0e63b7cf22c0715195a8c0
- SSDEEP
  
  24576:xuDXTIGaPhEYzUzA0/0hWiAAC0W5y/I9qGDDe8svBIZ9Ysi6/RA2+IGuOR2bh/2m:kDjlabwz9IW0wPqiMmqsjRSxqEm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1