95c8931e3fa3b1de5d681f34643577af8bceeea242a56d1958d8f7df9a9a0523 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PythonTest.exe
Size

21.1MB
Sample

241017-y2sspsxcml
MD5

23653f3c2562ab99614f33be4472efdc
SHA1

05558bab8d59579b3c585ad77ad52a2b688d0b04
SHA256

95c8931e3fa3b1de5d681f34643577af8bceeea242a56d1958d8f7df9a9a0523
SHA512

ca606a50fa6f676dfd931c0de48fc54cfe31e88c621417321f830115f24a0ae02177a10066875bcf119afb2a11d4bac637267659faf44262c7c00fd8542e14af
SSDEEP

393216:u2BFHno9LF5svby2das3mvCR3x2gS6+RRo7Nxir4TUzDFuMJHoZ41zGfTB:u2Tno9L7+Vv38eB2gqCpxYWMxuUQ4Uf1

Score

7^/10

Malware Config

Targets

- Target
  
  PythonTest.exe
- Size
  
  21.1MB
- MD5
  
  23653f3c2562ab99614f33be4472efdc
- SHA1
  
  05558bab8d59579b3c585ad77ad52a2b688d0b04
- SHA256
  
  95c8931e3fa3b1de5d681f34643577af8bceeea242a56d1958d8f7df9a9a0523
- SHA512
  
  ca606a50fa6f676dfd931c0de48fc54cfe31e88c621417321f830115f24a0ae02177a10066875bcf119afb2a11d4bac637267659faf44262c7c00fd8542e14af
- SSDEEP
  
  393216:u2BFHno9LF5svby2das3mvCR3x2gS6+RRo7Nxir4TUzDFuMJHoZ41zGfTB:u2Tno9L7+Vv38eB2gqCpxYWMxuUQ4Uf1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2