0ef187da11ebbca19362a06b9eb082143be2ec6488e1a2688dc3f66a35753592 | Triage

Sharing

General

Target

0ef187da11ebbca19362a06b9eb082143be2ec6488e1a2688dc3f66a35753592.exe
Size

16KB
Sample

241121-h77aaazhnk
MD5

87404c90544f46c429d0fcc7b7a99c08
SHA1

0461c13a4057f96152d250fa1cbce638aee45b0c
SHA256

0ef187da11ebbca19362a06b9eb082143be2ec6488e1a2688dc3f66a35753592
SHA512

fc5ed874d034d0da7048db658c2a5547e19d995e8cb248d67d5ea944e59e0ca5937510609370a533b7debffb098d7a353159060490e00ffe36d0e47a3a2da098
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY44EA1u:hDXWipuE+K3/SSHgxm5Z1u

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0ef187da11ebbca19362a06b9eb082143be2ec6488e1a2688dc3f66a35753592.exe
- Size
  
  16KB
- MD5
  
  87404c90544f46c429d0fcc7b7a99c08
- SHA1
  
  0461c13a4057f96152d250fa1cbce638aee45b0c
- SHA256
  
  0ef187da11ebbca19362a06b9eb082143be2ec6488e1a2688dc3f66a35753592
- SHA512
  
  fc5ed874d034d0da7048db658c2a5547e19d995e8cb248d67d5ea944e59e0ca5937510609370a533b7debffb098d7a353159060490e00ffe36d0e47a3a2da098
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY44EA1u:hDXWipuE+K3/SSHgxm5Z1u
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2