ba67d8c4170a5952be6057aefc4a86584d781de234afb13c5dd20d1cf1bbb056 | Triage

Sharing

General

Target

ba67d8c4170a5952be6057aefc4a86584d781de234afb13c5dd20d1cf1bbb056.exe
Size

20KB
Sample

241121-l73tms1hrq
MD5

d4cb9df25aa2a7eb7eaa2596a654c4a9
SHA1

2a4c557b463b08a3abbac8e1bed128ad8f9c8751
SHA256

ba67d8c4170a5952be6057aefc4a86584d781de234afb13c5dd20d1cf1bbb056
SHA512

e0de67241c338f0512339e09c6d990e44f1ad6e146ab9ee042c8960efeda69aa958df9f4fc5fc5b9d53db7566f411d8adfe6e8667e6c178c209c6e13cab03f14
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxX1pWH:hDXWipuE+K3/SSHgxmH9k

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ba67d8c4170a5952be6057aefc4a86584d781de234afb13c5dd20d1cf1bbb056.exe
- Size
  
  20KB
- MD5
  
  d4cb9df25aa2a7eb7eaa2596a654c4a9
- SHA1
  
  2a4c557b463b08a3abbac8e1bed128ad8f9c8751
- SHA256
  
  ba67d8c4170a5952be6057aefc4a86584d781de234afb13c5dd20d1cf1bbb056
- SHA512
  
  e0de67241c338f0512339e09c6d990e44f1ad6e146ab9ee042c8960efeda69aa958df9f4fc5fc5b9d53db7566f411d8adfe6e8667e6c178c209c6e13cab03f14
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxX1pWH:hDXWipuE+K3/SSHgxmH9k
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2