f1319c9acc9bc82d3cabb170907ba68765314c0f9031761ac8fc769c154b7353 | Triage

Sharing

General

Target

f1319c9acc9bc82d3cabb170907ba68765314c0f9031761ac8fc769c154b7353
Size

49KB
Sample

241121-nlk3ta1rdw
MD5

ca384e0eada624a50bfe64e6ad48f6c2
SHA1

162a3f550317068b589ba26be4ad20d11c2c3976
SHA256

f1319c9acc9bc82d3cabb170907ba68765314c0f9031761ac8fc769c154b7353
SHA512

0eb09973837d92c4334a45ae58ea3984e68f8488be7e5635d8a681d2d247fda12a1b0203f35499792a8fbff67fce85b333eaf77af5736772e162a09d721efab7
SSDEEP

1536:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cNW6/OVgXqeIvS1JM:DXFKCtdgI2MyzNtRQtONlIwoHNV2XBFY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f1319c9acc9bc82d3cabb170907ba68765314c0f9031761ac8fc769c154b7353
- Size
  
  49KB
- MD5
  
  ca384e0eada624a50bfe64e6ad48f6c2
- SHA1
  
  162a3f550317068b589ba26be4ad20d11c2c3976
- SHA256
  
  f1319c9acc9bc82d3cabb170907ba68765314c0f9031761ac8fc769c154b7353
- SHA512
  
  0eb09973837d92c4334a45ae58ea3984e68f8488be7e5635d8a681d2d247fda12a1b0203f35499792a8fbff67fce85b333eaf77af5736772e162a09d721efab7
- SSDEEP
  
  1536:Da0mc7ufCtdgI2MyzNtRQtONlIwoHNV2XBFV72B4lA7cNW6/OVgXqeIvS1JM:DXFKCtdgI2MyzNtRQtONlIwoHNV2XBFY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2