f812383409721e77465176f5a0f6ccc55091fca0405aca9659d0d192e4effda9 | Triage

Sharing

General

Target

f812383409721e77465176f5a0f6ccc55091fca0405aca9659d0d192e4effda9N
Size

35KB
Sample

241018-navswatdpf
MD5

b2a0230270c2740e123a5a2bec1f4800
SHA1

0be1824435c2c6c63cfe1d5215ae2aaee3503155
SHA256

f812383409721e77465176f5a0f6ccc55091fca0405aca9659d0d192e4effda9
SHA512

508816a073c059daef3902dae5fc927eac1590c2cab3e48999b1abcca868b4663674499f681cee1d4d44e32c9fb930169f0ae2c8f046c3868f2ede3c43819351
SSDEEP

768:CnpnIYh43Dc3GbWXLFaun5jfkcha1Mb/x5M6/R58Pfm6xCX+:qSq5jMca1Mbd558nmwl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f812383409721e77465176f5a0f6ccc55091fca0405aca9659d0d192e4effda9N
- Size
  
  35KB
- MD5
  
  b2a0230270c2740e123a5a2bec1f4800
- SHA1
  
  0be1824435c2c6c63cfe1d5215ae2aaee3503155
- SHA256
  
  f812383409721e77465176f5a0f6ccc55091fca0405aca9659d0d192e4effda9
- SHA512
  
  508816a073c059daef3902dae5fc927eac1590c2cab3e48999b1abcca868b4663674499f681cee1d4d44e32c9fb930169f0ae2c8f046c3868f2ede3c43819351
- SSDEEP
  
  768:CnpnIYh43Dc3GbWXLFaun5jfkcha1Mb/x5M6/R58Pfm6xCX+:qSq5jMca1Mbd558nmwl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2