c844c2e53fa779f0c14203762fb4001402eb635e9b9db94dac444eb632bcb981 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c844c2e53fa779f0c14203762fb4001402eb635e9b9db94dac444eb632bcb981
Size

31KB
Sample

241015-fb6mrsvhma
MD5

c36982cc0b5b65c354f7deb78cc4c3af
SHA1

534f30afe3a823cfccb34b43c36ee60d6e8e47a5
SHA256

c844c2e53fa779f0c14203762fb4001402eb635e9b9db94dac444eb632bcb981
SHA512

bc0f0368583f4d69ad48e0454e3f9ccf0bc933add57e0e17e1a625517f154459cf9fa0e6b75ee2f7e82fbe496878dd3dcd457647d56f7136b916221f618c9631
SSDEEP

384:ctz3+pmuMgm4PHgTfhl1IBxRlHzZN2zVqObfVbynZcH:6zQMQWlqBxRlHzZN2zAaVbRH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c844c2e53fa779f0c14203762fb4001402eb635e9b9db94dac444eb632bcb981
- Size
  
  31KB
- MD5
  
  c36982cc0b5b65c354f7deb78cc4c3af
- SHA1
  
  534f30afe3a823cfccb34b43c36ee60d6e8e47a5
- SHA256
  
  c844c2e53fa779f0c14203762fb4001402eb635e9b9db94dac444eb632bcb981
- SHA512
  
  bc0f0368583f4d69ad48e0454e3f9ccf0bc933add57e0e17e1a625517f154459cf9fa0e6b75ee2f7e82fbe496878dd3dcd457647d56f7136b916221f618c9631
- SSDEEP
  
  384:ctz3+pmuMgm4PHgTfhl1IBxRlHzZN2zVqObfVbynZcH:6zQMQWlqBxRlHzZN2zAaVbRH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2