a14e1a6e42d1251ad6da3b92ce89c5e4534a287e638f1a742963ea52105393cf | Triage

Sharing

General

Target

a14e1a6e42d1251ad6da3b92ce89c5e4534a287e638f1a742963ea52105393cf.exe
Size

16KB
Sample

241121-hjym8szfrn
MD5

bfad3a963f1cd2c59fd197060afd7aff
SHA1

8f11a81c6fc1d9287bd834ee1c29665f168ff7c9
SHA256

a14e1a6e42d1251ad6da3b92ce89c5e4534a287e638f1a742963ea52105393cf
SHA512

9c2a67bc1b16a859b3b8164dcaa3fdc436023bcab4f162bb095411887502a00ec4072bda2953437e491219402f74de48fadf1ab33a3d9386d25610ad3fa244e1
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0Tze:hDXWipuE+K3/SSHgx4+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a14e1a6e42d1251ad6da3b92ce89c5e4534a287e638f1a742963ea52105393cf.exe
- Size
  
  16KB
- MD5
  
  bfad3a963f1cd2c59fd197060afd7aff
- SHA1
  
  8f11a81c6fc1d9287bd834ee1c29665f168ff7c9
- SHA256
  
  a14e1a6e42d1251ad6da3b92ce89c5e4534a287e638f1a742963ea52105393cf
- SHA512
  
  9c2a67bc1b16a859b3b8164dcaa3fdc436023bcab4f162bb095411887502a00ec4072bda2953437e491219402f74de48fadf1ab33a3d9386d25610ad3fa244e1
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0Tze:hDXWipuE+K3/SSHgx4+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2