b56dbec4b6920f3e41b4fc3832318175048aacc7c838f58328761ada32e18c34 | Triage

Sharing

General

Target

b56dbec4b6920f3e41b4fc3832318175048aacc7c838f58328761ada32e18c34
Size

29KB
Sample

241120-daq5ksynez
MD5

7fa66dad9944fa7601d2a52c0783d515
SHA1

a963f1b0150b4bd7614f0970e575ec9016e5cc15
SHA256

b56dbec4b6920f3e41b4fc3832318175048aacc7c838f58328761ada32e18c34
SHA512

fda6d75048b4450944c05a824ca7bb9c70c21a359e0d4f1b9f48104596cc4223bfa5db81556dc3911e4418f8895a21231cc742f752d101a636d9e3997d5404f0
SSDEEP

384:IMAP4wZ6khYJRKiC0bz94calJJjjjCRAAAAA2GESbns6wQQjsMHXrVPeS:IM0ZiLCWwJjjZLnz6rcS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b56dbec4b6920f3e41b4fc3832318175048aacc7c838f58328761ada32e18c34
- Size
  
  29KB
- MD5
  
  7fa66dad9944fa7601d2a52c0783d515
- SHA1
  
  a963f1b0150b4bd7614f0970e575ec9016e5cc15
- SHA256
  
  b56dbec4b6920f3e41b4fc3832318175048aacc7c838f58328761ada32e18c34
- SHA512
  
  fda6d75048b4450944c05a824ca7bb9c70c21a359e0d4f1b9f48104596cc4223bfa5db81556dc3911e4418f8895a21231cc742f752d101a636d9e3997d5404f0
- SSDEEP
  
  384:IMAP4wZ6khYJRKiC0bz94calJJjjjCRAAAAA2GESbns6wQQjsMHXrVPeS:IM0ZiLCWwJjjZLnz6rcS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2