dd0fc85d791dfaba685aa5cc78829abddbebdde6468399d9d674c027a0eaf696 | Triage

Sharing

General

Target

dd0fc85d791dfaba685aa5cc78829abddbebdde6468399d9d674c027a0eaf696.exe
Size

16KB
Sample

241121-k4pl6svpbm
MD5

5bc7499870836d61789bb2afaa478927
SHA1

624536c54fdac65f6725c599830aae90582cde7d
SHA256

dd0fc85d791dfaba685aa5cc78829abddbebdde6468399d9d674c027a0eaf696
SHA512

cc57aa1b0744e0c03254949b36908d3ee9ce19fc79a09e80d445f25c5d3898fe1d5f373ce02c6290bb7093010d93ff5f3d625797bf2f4db5579e563036cdf151
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhU:hDXWipuE+K3/SSHgx+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  dd0fc85d791dfaba685aa5cc78829abddbebdde6468399d9d674c027a0eaf696.exe
- Size
  
  16KB
- MD5
  
  5bc7499870836d61789bb2afaa478927
- SHA1
  
  624536c54fdac65f6725c599830aae90582cde7d
- SHA256
  
  dd0fc85d791dfaba685aa5cc78829abddbebdde6468399d9d674c027a0eaf696
- SHA512
  
  cc57aa1b0744e0c03254949b36908d3ee9ce19fc79a09e80d445f25c5d3898fe1d5f373ce02c6290bb7093010d93ff5f3d625797bf2f4db5579e563036cdf151
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhU:hDXWipuE+K3/SSHgx+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2