78968a49536e19527370a8bb6e2aecd31b20f4f31734b9e163f93077b61a695a | Triage

Sharing

General

Target

78968a49536e19527370a8bb6e2aecd31b20f4f31734b9e163f93077b61a695a.exe
Size

16KB
Sample

241121-kxsp9azflb
MD5

c42a72e0db74abe1ae634448070f2981
SHA1

bd556100517aacfb22c40fedc76c58238b5bba84
SHA256

78968a49536e19527370a8bb6e2aecd31b20f4f31734b9e163f93077b61a695a
SHA512

7891252324a1ffeb5f9316e2de89f0b1f151ce610fb4837ee441965c4277da1e94d412c0a7e18c680c5d933480dff1baacd9ff79b409e55d170a2f61ec849d0e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5JT9:hDXWipuE+K3/SSHgxl5p9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  78968a49536e19527370a8bb6e2aecd31b20f4f31734b9e163f93077b61a695a.exe
- Size
  
  16KB
- MD5
  
  c42a72e0db74abe1ae634448070f2981
- SHA1
  
  bd556100517aacfb22c40fedc76c58238b5bba84
- SHA256
  
  78968a49536e19527370a8bb6e2aecd31b20f4f31734b9e163f93077b61a695a
- SHA512
  
  7891252324a1ffeb5f9316e2de89f0b1f151ce610fb4837ee441965c4277da1e94d412c0a7e18c680c5d933480dff1baacd9ff79b409e55d170a2f61ec849d0e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5JT9:hDXWipuE+K3/SSHgxl5p9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2