353b9d0f3894c1abbd7d72938d331d70a06c9cab70704d97d3ed009feb9d41f7 | Triage

Sharing

General

Target

353b9d0f3894c1abbd7d72938d331d70a06c9cab70704d97d3ed009feb9d41f7.exe
Size

14KB
Sample

241121-nfph2ssdlk
MD5

151047a32ed0be72f4dc6d72a24ca30e
SHA1

93364fd943cf1b07e96e08fe80e9589b0c02994c
SHA256

353b9d0f3894c1abbd7d72938d331d70a06c9cab70704d97d3ed009feb9d41f7
SHA512

427b2c82eb7d80320dd0f901116b4d7f0199afd3f5929906bf2b34575fd02c6163d11a70823da68a4ab4251b27b0cef85e665e012d76f925b495aab9f80145c8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRUqtY:hDXWipuE+K3/SSHgx3O

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  353b9d0f3894c1abbd7d72938d331d70a06c9cab70704d97d3ed009feb9d41f7.exe
- Size
  
  14KB
- MD5
  
  151047a32ed0be72f4dc6d72a24ca30e
- SHA1
  
  93364fd943cf1b07e96e08fe80e9589b0c02994c
- SHA256
  
  353b9d0f3894c1abbd7d72938d331d70a06c9cab70704d97d3ed009feb9d41f7
- SHA512
  
  427b2c82eb7d80320dd0f901116b4d7f0199afd3f5929906bf2b34575fd02c6163d11a70823da68a4ab4251b27b0cef85e665e012d76f925b495aab9f80145c8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRUqtY:hDXWipuE+K3/SSHgx3O
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2