e8121e6e976b91ee3a249446d228654cccfd3d22ccee958bfa583e5c00dc8152 | Triage

Sharing

General

Target

dropdrop part 2.exe
Size

29KB
Sample

241013-rgvm8sverj
MD5

a442915d156696bfbba8a83de1e57359
SHA1

c94294d815c19ad80cb46dcd16b008e47365bdd4
SHA256

e8121e6e976b91ee3a249446d228654cccfd3d22ccee958bfa583e5c00dc8152
SHA512

fd05a999e602144d16d54a3e91702220c0f8bfaf737e6735448d69993efae1d95f784878f549a4159e936c7da856adf2bf90f1f48696f952b8fcff33b4ffd1e7
SSDEEP

384:5daHArEY71hjWD0nytjRwgVfQaEg6qcldBmMgy2SciHEKPhScLaEFa9TUx6:faHYWDVjKgVf1mngyfFHG+X85Ux

Score

7^/10

Malware Config

Targets

- Target
  
  dropdrop part 2.exe
- Size
  
  29KB
- MD5
  
  a442915d156696bfbba8a83de1e57359
- SHA1
  
  c94294d815c19ad80cb46dcd16b008e47365bdd4
- SHA256
  
  e8121e6e976b91ee3a249446d228654cccfd3d22ccee958bfa583e5c00dc8152
- SHA512
  
  fd05a999e602144d16d54a3e91702220c0f8bfaf737e6735448d69993efae1d95f784878f549a4159e936c7da856adf2bf90f1f48696f952b8fcff33b4ffd1e7
- SSDEEP
  
  384:5daHArEY71hjWD0nytjRwgVfQaEg6qcldBmMgy2SciHEKPhScLaEFa9TUx6:faHYWDVjKgVf1mngyfFHG+X85Ux
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2