bb0a726b1ba34f7a785f2e3a41383ad164ebb45ef97313f3910f1f8bb7d968b1 | Triage

Sharing

General

Target

bb0a726b1ba34f7a785f2e3a41383ad164ebb45ef97313f3910f1f8bb7d968b1.exe
Size

15KB
Sample

241121-jmz6xazare
MD5

3a6e30b97489ad39e5af535486d08514
SHA1

e8c205a0c267342ad6cc31c31d6e4d0c51172884
SHA256

bb0a726b1ba34f7a785f2e3a41383ad164ebb45ef97313f3910f1f8bb7d968b1
SHA512

2298f265315e0f5bd36e7e9f3bd2650093f6e25412858b823514084c1e31f38c731747bd7a89deb051f6528c5f3311cbc745903b42357eeeaea6b13ff7b7c810
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJdy:hDXWipuE+K3/SSHgxhy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bb0a726b1ba34f7a785f2e3a41383ad164ebb45ef97313f3910f1f8bb7d968b1.exe
- Size
  
  15KB
- MD5
  
  3a6e30b97489ad39e5af535486d08514
- SHA1
  
  e8c205a0c267342ad6cc31c31d6e4d0c51172884
- SHA256
  
  bb0a726b1ba34f7a785f2e3a41383ad164ebb45ef97313f3910f1f8bb7d968b1
- SHA512
  
  2298f265315e0f5bd36e7e9f3bd2650093f6e25412858b823514084c1e31f38c731747bd7a89deb051f6528c5f3311cbc745903b42357eeeaea6b13ff7b7c810
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJdy:hDXWipuE+K3/SSHgxhy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2