164a108fabaecd31ffcdb7724a0d612ca0a76b0ffd8e8bae8fb69bb26429fd2b | Triage

Sharing

General

Target

164a108fabaecd31ffcdb7724a0d612ca0a76b0ffd8e8bae8fb69bb26429fd2b.exe
Size

20KB
Sample

241121-ns7kdssejl
MD5

9a6a3a730b5f6a40405262f8b8d44116
SHA1

f22a057eee895a9191905d2266e0840e81485106
SHA256

164a108fabaecd31ffcdb7724a0d612ca0a76b0ffd8e8bae8fb69bb26429fd2b
SHA512

65e47eb06dd1c169d1964070600343a6b46eb610feed441d509263a6c25c367ee5b9d555821a297c1791bf1218aac3ff9e8d8270ffce1ae3b7aafc6a697c259c
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4k:hDXWipuE+K3/SSHgxmHZk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  164a108fabaecd31ffcdb7724a0d612ca0a76b0ffd8e8bae8fb69bb26429fd2b.exe
- Size
  
  20KB
- MD5
  
  9a6a3a730b5f6a40405262f8b8d44116
- SHA1
  
  f22a057eee895a9191905d2266e0840e81485106
- SHA256
  
  164a108fabaecd31ffcdb7724a0d612ca0a76b0ffd8e8bae8fb69bb26429fd2b
- SHA512
  
  65e47eb06dd1c169d1964070600343a6b46eb610feed441d509263a6c25c367ee5b9d555821a297c1791bf1218aac3ff9e8d8270ffce1ae3b7aafc6a697c259c
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4k:hDXWipuE+K3/SSHgxmHZk
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2