6f3b8d2caf7a9ac3558d9aa5328676f168fb560a760a42dc5427fa72b0f22c2f | Triage

Sharing

General

Target

6f3b8d2caf7a9ac3558d9aa5328676f168fb560a760a42dc5427fa72b0f22c2fN
Size

43KB
Sample

241014-ns3w7syfpj
MD5

51e1873389e6367829f982b413688030
SHA1

17f8261f549d85cce4330a29fc8a34b4be72d263
SHA256

6f3b8d2caf7a9ac3558d9aa5328676f168fb560a760a42dc5427fa72b0f22c2f
SHA512

1b9ae47321f0ae71f0a12b62ed4da453196c612ca7dfa790bf6a7d32ffb02cefcd869986f321009d471add05010d8bdc80a23e8ad717d746458dca1f3b5b6391
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lBth2fmmA1scIQv:ZzFbxmLPWQMOtEvwDpj38ltfmA9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6f3b8d2caf7a9ac3558d9aa5328676f168fb560a760a42dc5427fa72b0f22c2fN
- Size
  
  43KB
- MD5
  
  51e1873389e6367829f982b413688030
- SHA1
  
  17f8261f549d85cce4330a29fc8a34b4be72d263
- SHA256
  
  6f3b8d2caf7a9ac3558d9aa5328676f168fb560a760a42dc5427fa72b0f22c2f
- SHA512
  
  1b9ae47321f0ae71f0a12b62ed4da453196c612ca7dfa790bf6a7d32ffb02cefcd869986f321009d471add05010d8bdc80a23e8ad717d746458dca1f3b5b6391
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lBth2fmmA1scIQv:ZzFbxmLPWQMOtEvwDpj38ltfmA9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2