8ebe441ccc572d05e0e5f859dc59665822d3646618bfd97dc3a25d0702832df6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8ebe441ccc572d05e0e5f859dc59665822d3646618bfd97dc3a25d0702832df6N
Size

30KB
Sample

241013-zjfwvssaqj
MD5

4fb51ea9dea37d5f156549983bbfff40
SHA1

4d635ead53160c09f71e36f2ad25c8d667a45863
SHA256

8ebe441ccc572d05e0e5f859dc59665822d3646618bfd97dc3a25d0702832df6
SHA512

fb85744546c85b4b26b3731193a37ac9731de9745e675787979c947ac3df41625edf7b09b3cfeb7fd8d627b1840ed98f00bc747b41a8b4431a791250ed5db2c0
SSDEEP

384:2Mv0aVJOt2obD3/HhzF8N+HBnFIy+YPe6xagk58sCub2u+AcXAHyqT+H:373OtJDvhzNsyXk58sCuScb+H

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8ebe441ccc572d05e0e5f859dc59665822d3646618bfd97dc3a25d0702832df6N
- Size
  
  30KB
- MD5
  
  4fb51ea9dea37d5f156549983bbfff40
- SHA1
  
  4d635ead53160c09f71e36f2ad25c8d667a45863
- SHA256
  
  8ebe441ccc572d05e0e5f859dc59665822d3646618bfd97dc3a25d0702832df6
- SHA512
  
  fb85744546c85b4b26b3731193a37ac9731de9745e675787979c947ac3df41625edf7b09b3cfeb7fd8d627b1840ed98f00bc747b41a8b4431a791250ed5db2c0
- SSDEEP
  
  384:2Mv0aVJOt2obD3/HhzF8N+HBnFIy+YPe6xagk58sCub2u+AcXAHyqT+H:373OtJDvhzNsyXk58sCuScb+H
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2