514225421165ba6d4769e6d6cf673306536b1eb647419d2ace6c2f8c1d0cc8c5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

514225421165ba6d4769e6d6cf673306536b1eb647419d2ace6c2f8c1d0cc8c5N
Size

50KB
Sample

241013-pngnvawerd
MD5

7fd5ad7d708480b4a4d76787b3b47690
SHA1

95cf7ddad63e87d6d1dd306bc5658977bb215fb1
SHA256

514225421165ba6d4769e6d6cf673306536b1eb647419d2ace6c2f8c1d0cc8c5
SHA512

2f282c9a80f17c90beef4b7d8347babd9e367ea05c2a5ffb415b0227f15ff62c5aefa73185ad9abb56620cdf6f1ca4ef3aa125a110b747bf96b2f35bc0d94d86
SSDEEP

1536:4GUiEAJoZWtdEI2MyzNORQtOflIwoHNM2XBFV7WB7lx7+sroMYILSh87vddgc:4GUzRWtdEI2MyzNORQtOflIwoHNM2XBs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  514225421165ba6d4769e6d6cf673306536b1eb647419d2ace6c2f8c1d0cc8c5N
- Size
  
  50KB
- MD5
  
  7fd5ad7d708480b4a4d76787b3b47690
- SHA1
  
  95cf7ddad63e87d6d1dd306bc5658977bb215fb1
- SHA256
  
  514225421165ba6d4769e6d6cf673306536b1eb647419d2ace6c2f8c1d0cc8c5
- SHA512
  
  2f282c9a80f17c90beef4b7d8347babd9e367ea05c2a5ffb415b0227f15ff62c5aefa73185ad9abb56620cdf6f1ca4ef3aa125a110b747bf96b2f35bc0d94d86
- SSDEEP
  
  1536:4GUiEAJoZWtdEI2MyzNORQtOflIwoHNM2XBFV7WB7lx7+sroMYILSh87vddgc:4GUzRWtdEI2MyzNORQtOflIwoHNM2XBs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2