1285c615509426ca41580ecafd0c4c51720ba489f1488b305212ff6269d17b94 | Triage

Sharing

General

Target

1285c615509426ca41580ecafd0c4c51720ba489f1488b305212ff6269d17b94
Size

24KB
Sample

241119-yctcya1hrn
MD5

fc2c4d667dc9dc1bdc5edff711523508
SHA1

51b651626ba60f0b80f509f8ac0b1ffda488533d
SHA256

1285c615509426ca41580ecafd0c4c51720ba489f1488b305212ff6269d17b94
SHA512

0c10ac63dc9ad0a4937a65802f2b8209bd8c063d09738975e8b3a319fb091107c75b6f51b4b20f939c9762420dd30079b4682242a371cb20fd5dbc24e80cf456
SSDEEP

384:PT2KXjzs70cT0C6TZ4FcnyWAwKl7NTobfZf3/BnyCv:PT2t0cp04cpAwKz8jp35nH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  1285c615509426ca41580ecafd0c4c51720ba489f1488b305212ff6269d17b94
- Size
  
  24KB
- MD5
  
  fc2c4d667dc9dc1bdc5edff711523508
- SHA1
  
  51b651626ba60f0b80f509f8ac0b1ffda488533d
- SHA256
  
  1285c615509426ca41580ecafd0c4c51720ba489f1488b305212ff6269d17b94
- SHA512
  
  0c10ac63dc9ad0a4937a65802f2b8209bd8c063d09738975e8b3a319fb091107c75b6f51b4b20f939c9762420dd30079b4682242a371cb20fd5dbc24e80cf456
- SSDEEP
  
  384:PT2KXjzs70cT0C6TZ4FcnyWAwKl7NTobfZf3/BnyCv:PT2t0cp04cpAwKz8jp35nH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2