e4057a6f93910ff11bef25ea76bd32a64c57a555df8891eb408553221bf8ed5b | Triage

Sharing

General

Target

e4057a6f93910ff11bef25ea76bd32a64c57a555df8891eb408553221bf8ed5bN.exe
Size

38KB
Sample

241120-fhbqzasbql
MD5

6eef8d7b2edf7f7a7903aaebeda8b700
SHA1

85f438776aecc82590748088fb2b792b8699846e
SHA256

e4057a6f93910ff11bef25ea76bd32a64c57a555df8891eb408553221bf8ed5b
SHA512

bb5f921528e098770c94ad308f161667880b05b4cd90e8821fd7ccc54e391438f13a1b539142ff7d07bf034422ad995842b69dd0866fd417eca1b4dbe3c6ecc1
SSDEEP

384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCLYz+z4GJfblRiAFojdIwMDQOSQClXae4:yAHt0Vu5IrM44TlhZwKQbQClXatP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e4057a6f93910ff11bef25ea76bd32a64c57a555df8891eb408553221bf8ed5bN.exe
- Size
  
  38KB
- MD5
  
  6eef8d7b2edf7f7a7903aaebeda8b700
- SHA1
  
  85f438776aecc82590748088fb2b792b8699846e
- SHA256
  
  e4057a6f93910ff11bef25ea76bd32a64c57a555df8891eb408553221bf8ed5b
- SHA512
  
  bb5f921528e098770c94ad308f161667880b05b4cd90e8821fd7ccc54e391438f13a1b539142ff7d07bf034422ad995842b69dd0866fd417eca1b4dbe3c6ecc1
- SSDEEP
  
  384:6YwzAbTtITikpqIoxO6kA35c6ubEAPTCLYz+z4GJfblRiAFojdIwMDQOSQClXae4:yAHt0Vu5IrM44TlhZwKQbQClXatP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2