23a977b115794a8a297667cc8cee3d0ebd0d10ce632e1752685c337638f77996 | Triage

Sharing

General

Target

23a977b115794a8a297667cc8cee3d0ebd0d10ce632e1752685c337638f77996.exe
Size

14KB
Sample

241121-m5v7fswlbl
MD5

0b40bc5f8884d522ae63ba6a61b2e4a1
SHA1

5119cb67660421c8fc8699964930ddde7c29cb02
SHA256

23a977b115794a8a297667cc8cee3d0ebd0d10ce632e1752685c337638f77996
SHA512

3842875cdf9f830e28490e95f54dffcb290ae5b9181929a997bc2f7566d5b53cc4bed52373b7fac2f1f0d9495537789506249a0b477574d0ad9b559dc1eab79b
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5RAnz:hDXWipuE+K3/SSHgxO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  23a977b115794a8a297667cc8cee3d0ebd0d10ce632e1752685c337638f77996.exe
- Size
  
  14KB
- MD5
  
  0b40bc5f8884d522ae63ba6a61b2e4a1
- SHA1
  
  5119cb67660421c8fc8699964930ddde7c29cb02
- SHA256
  
  23a977b115794a8a297667cc8cee3d0ebd0d10ce632e1752685c337638f77996
- SHA512
  
  3842875cdf9f830e28490e95f54dffcb290ae5b9181929a997bc2f7566d5b53cc4bed52373b7fac2f1f0d9495537789506249a0b477574d0ad9b559dc1eab79b
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5RAnz:hDXWipuE+K3/SSHgxO
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2