d997a88d25217aa3eaa959b866c718ec09d7a61574007c5959b79af92f5d4a8b | Triage

Sharing

General

Target

2024-10-13_0607843bfee5e04b5e80ed966ad7c2c6_mafia
Size

535KB
Sample

241013-t91q3awhld
MD5

0607843bfee5e04b5e80ed966ad7c2c6
SHA1

f19c1057f4fd2080743c1e1c8b4cad7e774e2e5a
SHA256

d997a88d25217aa3eaa959b866c718ec09d7a61574007c5959b79af92f5d4a8b
SHA512

1799f52f9ffd0dc5e27ad73c1e76a16f13ddb8d88f8c175407aa27c31b5fa42703adc836e5ab5ab4d488382e799ee42ecb4a50474ef2d088062998f2b292f92e
SSDEEP

12288:si4g+yU+0pAiv+9Hn16k88M29fBZoBneraI3xUlvjosTdcG93Dn:si4gXn0pD+dqlEcnm1ulvjRhFJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-13_0607843bfee5e04b5e80ed966ad7c2c6_mafia
- Size
  
  535KB
- MD5
  
  0607843bfee5e04b5e80ed966ad7c2c6
- SHA1
  
  f19c1057f4fd2080743c1e1c8b4cad7e774e2e5a
- SHA256
  
  d997a88d25217aa3eaa959b866c718ec09d7a61574007c5959b79af92f5d4a8b
- SHA512
  
  1799f52f9ffd0dc5e27ad73c1e76a16f13ddb8d88f8c175407aa27c31b5fa42703adc836e5ab5ab4d488382e799ee42ecb4a50474ef2d088062998f2b292f92e
- SSDEEP
  
  12288:si4g+yU+0pAiv+9Hn16k88M29fBZoBneraI3xUlvjosTdcG93Dn:si4gXn0pD+dqlEcnm1ulvjRhFJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2