bc51bd63471dbb6576467f3191c557c5c5138148cac9a8a309e89aeb29d5ee39 | Triage

Sharing

General

Target

bc51bd63471dbb6576467f3191c557c5c5138148cac9a8a309e89aeb29d5ee39
Size

1.8MB
Sample

241120-dlt1lsyqhv
MD5

dc3d324ac5363ec4a80eaf93ee9166cc
SHA1

5804bf9c5314886a8a59b5d7bd97641a444f1ae9
SHA256

bc51bd63471dbb6576467f3191c557c5c5138148cac9a8a309e89aeb29d5ee39
SHA512

25d71dda46d9850bdbdd7dca08ec1ae299c9459adcbc5172c6e22f957dd88248979b1fe85df439b63f262d6d3eb6c123f8f709ecb0ac2e87d517aac69dc4d464
SSDEEP

49152:tylFHUv6ReIt0jSrOogENXwu3qCqtKBjJj4Bn:0lFHU85t0jS/gENAu6ChJjAn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bc51bd63471dbb6576467f3191c557c5c5138148cac9a8a309e89aeb29d5ee39
- Size
  
  1.8MB
- MD5
  
  dc3d324ac5363ec4a80eaf93ee9166cc
- SHA1
  
  5804bf9c5314886a8a59b5d7bd97641a444f1ae9
- SHA256
  
  bc51bd63471dbb6576467f3191c557c5c5138148cac9a8a309e89aeb29d5ee39
- SHA512
  
  25d71dda46d9850bdbdd7dca08ec1ae299c9459adcbc5172c6e22f957dd88248979b1fe85df439b63f262d6d3eb6c123f8f709ecb0ac2e87d517aac69dc4d464
- SSDEEP
  
  49152:tylFHUv6ReIt0jSrOogENXwu3qCqtKBjJj4Bn:0lFHU85t0jS/gENAu6ChJjAn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2