Analysis
-
max time kernel
94s -
max time network
95s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
26-11-2024 11:40
Behavioral task
behavioral1
Sample
78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e.exe
Resource
win10v2004-20241007-en
General
-
Target
78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e.exe
-
Size
5.0MB
-
MD5
bc1b1d2fb29fa98eb30b3889c03a979b
-
SHA1
8479d569ddbe4e56afcf34b4e0de63e93e17c347
-
SHA256
78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e
-
SHA512
1b6477784ab96ceb7ed96e0843c809b1c7b270cbf898cc0bc5c827827fd8f323878927ea889253dc97d88d92226545eb340964a5ea89216980b10e453899f17c
-
SSDEEP
49152:r56uL3pgrCEdMKPFotsgEBr6GjvzW+UBA3Gd7po52xWKQY2v2V6liK1uOCeXvpnA:r56utgpPFotBER/mQ32lUu
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e.exedescription ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 78d4523bc040b6747e70a589786a0a0a4f9c8891a86a2ebab8c8f1d2f6869b2e.exe