f64680c81de390beba50a40069ec6081ed170a0a96af9e6c2a8eb78d9c3ff625 | Triage

Sharing

General

Target

f64680c81de390beba50a40069ec6081ed170a0a96af9e6c2a8eb78d9c3ff625.exe
Size

55KB
Sample

241119-s1gq6axmhw
MD5

7e9eb5ffc8b4d3c66e40931591c337ce
SHA1

41520b10eedb1d924c2e1881915aa1e5b3488964
SHA256

f64680c81de390beba50a40069ec6081ed170a0a96af9e6c2a8eb78d9c3ff625
SHA512

0ab6edf5ce7afb4f389298dbe1d4cf1316c45ebd0b7245b957e7444f71bed3f38065c35ea7be0b63f5126520fb3a4400e1695b783ea14d89ae443b368d6cbdf0
SSDEEP

768:HT1g40wSXvdMx+v3fUFqFRFo6kF7xNvCMUM33ScGyVe57SOsGUie8YgVOmp:Hxg2SfdMw3KeE52ayu07SOzUglh

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f64680c81de390beba50a40069ec6081ed170a0a96af9e6c2a8eb78d9c3ff625.exe
- Size
  
  55KB
- MD5
  
  7e9eb5ffc8b4d3c66e40931591c337ce
- SHA1
  
  41520b10eedb1d924c2e1881915aa1e5b3488964
- SHA256
  
  f64680c81de390beba50a40069ec6081ed170a0a96af9e6c2a8eb78d9c3ff625
- SHA512
  
  0ab6edf5ce7afb4f389298dbe1d4cf1316c45ebd0b7245b957e7444f71bed3f38065c35ea7be0b63f5126520fb3a4400e1695b783ea14d89ae443b368d6cbdf0
- SSDEEP
  
  768:HT1g40wSXvdMx+v3fUFqFRFo6kF7xNvCMUM33ScGyVe57SOsGUie8YgVOmp:Hxg2SfdMw3KeE52ayu07SOzUglh
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2