50e49791726cd9955cdca97b1eec8f63595bd50c5e4bd0821fa43a351caaa874 | Triage

Sharing

General

Target

50e49791726cd9955cdca97b1eec8f63595bd50c5e4bd0821fa43a351caaa874.exe
Size

14KB
Sample

241121-mee3js1are
MD5

d0ee06a79759d0d5cf7b2aaa5cfd652a
SHA1

ef8ddd561e0b79156c44eb851da4af12bc156df8
SHA256

50e49791726cd9955cdca97b1eec8f63595bd50c5e4bd0821fa43a351caaa874
SHA512

542bcba1a3e663457678ee46dcb6fbd3e8177d512a0c54d683842c64529d03774992d4146edd1fec03472cf911a569c9ae306faa0c28ef127b60c3a3a59e4e1d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5i5:hDXWipuE+K3/SSHgxl5i5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  50e49791726cd9955cdca97b1eec8f63595bd50c5e4bd0821fa43a351caaa874.exe
- Size
  
  14KB
- MD5
  
  d0ee06a79759d0d5cf7b2aaa5cfd652a
- SHA1
  
  ef8ddd561e0b79156c44eb851da4af12bc156df8
- SHA256
  
  50e49791726cd9955cdca97b1eec8f63595bd50c5e4bd0821fa43a351caaa874
- SHA512
  
  542bcba1a3e663457678ee46dcb6fbd3e8177d512a0c54d683842c64529d03774992d4146edd1fec03472cf911a569c9ae306faa0c28ef127b60c3a3a59e4e1d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5i5:hDXWipuE+K3/SSHgxl5i5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2