6d44e4e21195001a32c2a89729489f4578716baf3a238aa73228b282b88bd082 | Triage

Sharing

General

Target

6d44e4e21195001a32c2a89729489f4578716baf3a238aa73228b282b88bd082.exe
Size

20KB
Sample

241121-l4hz3a1mat
MD5

37183d88788877845452eae449b3cdc0
SHA1

9dca424788a0670017ae4a69ef545697364a2789
SHA256

6d44e4e21195001a32c2a89729489f4578716baf3a238aa73228b282b88bd082
SHA512

be201b602003ad4485b32f569cbe8351c77f6fdcb2e2b73c3df827305dc483cd86440374abafae768077f063e4a6c3e28098cd1458d824f773a72ae7eae8f144
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4ogeX:hDXWipuE+K3/SSHgxmHZoBX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6d44e4e21195001a32c2a89729489f4578716baf3a238aa73228b282b88bd082.exe
- Size
  
  20KB
- MD5
  
  37183d88788877845452eae449b3cdc0
- SHA1
  
  9dca424788a0670017ae4a69ef545697364a2789
- SHA256
  
  6d44e4e21195001a32c2a89729489f4578716baf3a238aa73228b282b88bd082
- SHA512
  
  be201b602003ad4485b32f569cbe8351c77f6fdcb2e2b73c3df827305dc483cd86440374abafae768077f063e4a6c3e28098cd1458d824f773a72ae7eae8f144
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4ogeX:hDXWipuE+K3/SSHgxmHZoBX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2