d6e0d438a933701d926fbd2f16888ebdb2211da86db20e06124d932319c75660 | Triage

Sharing

General

Target

d6e0d438a933701d926fbd2f16888ebdb2211da86db20e06124d932319c75660.exe
Size

20KB
Sample

241121-mjy18a1ncx
MD5

f3497e254a2cb34d41a3a4087f83fdf6
SHA1

aa2b4520585035e92c75123f34cd6c3951972598
SHA256

d6e0d438a933701d926fbd2f16888ebdb2211da86db20e06124d932319c75660
SHA512

55df30db83dd18060882ede8b14c7ca6c994a600028cc328e82524ba984fb1fd401701f3ce86b57d985e73c82c05e8b2471089df58461a3b4f897db2e386ed2d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4PRSU:hDXWipuE+K3/SSHgxmHZPRP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d6e0d438a933701d926fbd2f16888ebdb2211da86db20e06124d932319c75660.exe
- Size
  
  20KB
- MD5
  
  f3497e254a2cb34d41a3a4087f83fdf6
- SHA1
  
  aa2b4520585035e92c75123f34cd6c3951972598
- SHA256
  
  d6e0d438a933701d926fbd2f16888ebdb2211da86db20e06124d932319c75660
- SHA512
  
  55df30db83dd18060882ede8b14c7ca6c994a600028cc328e82524ba984fb1fd401701f3ce86b57d985e73c82c05e8b2471089df58461a3b4f897db2e386ed2d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4PRSU:hDXWipuE+K3/SSHgxmHZPRP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2