0579e882cb23aa618bf52279b7ab3a873bd4a2b4a480b87b9ffb9e2a7a06cb0f | Triage

Sharing

General

Target

0579e882cb23aa618bf52279b7ab3a873bd4a2b4a480b87b9ffb9e2a7a06cb0f.exe
Size

20KB
Sample

241121-lc8fmsvpgq
MD5

ca046b72871ca2517a5f53e65500e8cb
SHA1

fc78d94d5deea938aad596bf91e345c3213e061f
SHA256

0579e882cb23aa618bf52279b7ab3a873bd4a2b4a480b87b9ffb9e2a7a06cb0f
SHA512

2befe87ebb28fb391b4077e036b083e1594b1f486d6a7300c92b450f074c1d39c9ca5106e6576d833a09923a9c6d5b681496bd6e5ee968d06a67fb695450bc6c
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4Q:hDXWipuE+K3/SSHgxmHZQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0579e882cb23aa618bf52279b7ab3a873bd4a2b4a480b87b9ffb9e2a7a06cb0f.exe
- Size
  
  20KB
- MD5
  
  ca046b72871ca2517a5f53e65500e8cb
- SHA1
  
  fc78d94d5deea938aad596bf91e345c3213e061f
- SHA256
  
  0579e882cb23aa618bf52279b7ab3a873bd4a2b4a480b87b9ffb9e2a7a06cb0f
- SHA512
  
  2befe87ebb28fb391b4077e036b083e1594b1f486d6a7300c92b450f074c1d39c9ca5106e6576d833a09923a9c6d5b681496bd6e5ee968d06a67fb695450bc6c
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4Q:hDXWipuE+K3/SSHgxmHZQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2