334a1f04d1081348aafc79fc77335d69d1b9bb3361b7fea015efb101e302d385 | Triage

Sharing

General

Target

334a1f04d1081348aafc79fc77335d69d1b9bb3361b7fea015efb101e302d385.exe
Size

91KB
Sample

241121-ncqa6swlhl
MD5

338b4a473c27dd39d2944503ae724f4f
SHA1

0bf913deb52cb2ebd4eb602c913924e46839ce25
SHA256

334a1f04d1081348aafc79fc77335d69d1b9bb3361b7fea015efb101e302d385
SHA512

a3b5f3c7754186f37a8d8276c97b5c2e2df4c54cbb73bd7b6c847e6bd63ce4e91dbdd2af80fa3543bf49ea28d60293b2aa3c4f9280dd8286ee51407f256a1e1e
SSDEEP

1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcUF:EfMNE1JG6XMk27EbpOthl0ZUed0UF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  334a1f04d1081348aafc79fc77335d69d1b9bb3361b7fea015efb101e302d385.exe
- Size
  
  91KB
- MD5
  
  338b4a473c27dd39d2944503ae724f4f
- SHA1
  
  0bf913deb52cb2ebd4eb602c913924e46839ce25
- SHA256
  
  334a1f04d1081348aafc79fc77335d69d1b9bb3361b7fea015efb101e302d385
- SHA512
  
  a3b5f3c7754186f37a8d8276c97b5c2e2df4c54cbb73bd7b6c847e6bd63ce4e91dbdd2af80fa3543bf49ea28d60293b2aa3c4f9280dd8286ee51407f256a1e1e
- SSDEEP
  
  1536:GzfMMkPZE1J7S6/PMj42VJEY4ujMepJtANuOAl0QQsIEySYndfcUF:EfMNE1JG6XMk27EbpOthl0ZUed0UF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2