014773b8bf24e49ae084a86721d634a8f0f612431a07e203a2bcb1b80f1663ff | Triage

Sharing

General

Target

014773b8bf24e49ae084a86721d634a8f0f612431a07e203a2bcb1b80f1663ff.exe
Size

15KB
Sample

241121-gz2jdstnfm
MD5

8d3e9f3e5b79b579331eebf93b69e327
SHA1

cba027b57983cea96429cdcaeaded1adeff8989f
SHA256

014773b8bf24e49ae084a86721d634a8f0f612431a07e203a2bcb1b80f1663ff
SHA512

413a4198c0ed3fbda403bdc585e6a45a034c2205a6bc63cf65d5d40910819d4ffb2830d6e1c09229232c291ee0dac7939220500d116d39214fd9a9ad2df8708e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hqpX:hDXWipuE+K3/SSHgxmJpX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  014773b8bf24e49ae084a86721d634a8f0f612431a07e203a2bcb1b80f1663ff.exe
- Size
  
  15KB
- MD5
  
  8d3e9f3e5b79b579331eebf93b69e327
- SHA1
  
  cba027b57983cea96429cdcaeaded1adeff8989f
- SHA256
  
  014773b8bf24e49ae084a86721d634a8f0f612431a07e203a2bcb1b80f1663ff
- SHA512
  
  413a4198c0ed3fbda403bdc585e6a45a034c2205a6bc63cf65d5d40910819d4ffb2830d6e1c09229232c291ee0dac7939220500d116d39214fd9a9ad2df8708e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hqpX:hDXWipuE+K3/SSHgxmJpX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2