c91598f31099d5157ef641d2cfce647ad6e7de1b766e537c38df4258553da7c5 | Triage

Sharing

General

Target

c91598f31099d5157ef641d2cfce647ad6e7de1b766e537c38df4258553da7c5.exe
Size

3.2MB
Sample

241120-rsd5maxrhy
MD5

29bccbe4c0d5dbc86a266b404c95f80f
SHA1

5f130401f13c28ff12ebfaac103b92a1f6c78579
SHA256

c91598f31099d5157ef641d2cfce647ad6e7de1b766e537c38df4258553da7c5
SHA512

03abc01d6bbb78c88200f4fc8c341d18792bd374b760d089849e8dd2072d1b745c84b300f591b60266d04edbc3be884f66379d3a75d53309f10caa048dfa72f2
SSDEEP

98304:cpQoJl7ckc2LNvvAGxEW1v9S4+RMJ9aOZF9LOldZbc:cpRJl7O228EW1QycldZbc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c91598f31099d5157ef641d2cfce647ad6e7de1b766e537c38df4258553da7c5.exe
- Size
  
  3.2MB
- MD5
  
  29bccbe4c0d5dbc86a266b404c95f80f
- SHA1
  
  5f130401f13c28ff12ebfaac103b92a1f6c78579
- SHA256
  
  c91598f31099d5157ef641d2cfce647ad6e7de1b766e537c38df4258553da7c5
- SHA512
  
  03abc01d6bbb78c88200f4fc8c341d18792bd374b760d089849e8dd2072d1b745c84b300f591b60266d04edbc3be884f66379d3a75d53309f10caa048dfa72f2
- SSDEEP
  
  98304:cpQoJl7ckc2LNvvAGxEW1v9S4+RMJ9aOZF9LOldZbc:cpRJl7O228EW1QycldZbc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2