7515aea1bfd02634aa7932372e7d42a91125a8e282fd1d844bfe08396b1d8309 | Triage

Sharing

General

Target

7515aea1bfd02634aa7932372e7d42a91125a8e282fd1d844bfe08396b1d8309
Size

62KB
Sample

241017-3lx5pswcnk
MD5

a8454a718b777856d059a7c9854a6b30
SHA1

2a020330a2ddb8cf6c894326311890f2f1ef3742
SHA256

7515aea1bfd02634aa7932372e7d42a91125a8e282fd1d844bfe08396b1d8309
SHA512

ea116247f354fbeb828a98c7a15b9793dde8dc840cef1e8e9ca10100f8a9d5be7ac409cac74e4c12d1e4a18265c39891137e40faa4c2ee1359c96d4f45601860
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7Tw:MAaAJlzsh7pWezEPJB+O/w

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  7515aea1bfd02634aa7932372e7d42a91125a8e282fd1d844bfe08396b1d8309
- Size
  
  62KB
- MD5
  
  a8454a718b777856d059a7c9854a6b30
- SHA1
  
  2a020330a2ddb8cf6c894326311890f2f1ef3742
- SHA256
  
  7515aea1bfd02634aa7932372e7d42a91125a8e282fd1d844bfe08396b1d8309
- SHA512
  
  ea116247f354fbeb828a98c7a15b9793dde8dc840cef1e8e9ca10100f8a9d5be7ac409cac74e4c12d1e4a18265c39891137e40faa4c2ee1359c96d4f45601860
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7Tw:MAaAJlzsh7pWezEPJB+O/w
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2