d681e37654ef44f205af160fdec98688b0b6cdc45ae879f5f3cfb99996dc6c65 | Triage

Sharing

General

Target

d681e37654ef44f205af160fdec98688b0b6cdc45ae879f5f3cfb99996dc6c65.exe
Size

55KB
Sample

250120-k5n22asjcw
MD5

312fa9580da02545b7f8851e39d2254b
SHA1

b492f959747a26ae3268d7a996a6803a90a2f6ec
SHA256

d681e37654ef44f205af160fdec98688b0b6cdc45ae879f5f3cfb99996dc6c65
SHA512

0a1f1bff163696827072779c0f5a02ccbaf5b01543abc658aa90d65868ae1614917a45375684c62ce6ab3e9e68ca9c5014f053de3556162154225f3d952b03dd
SSDEEP

768:eFq/4qn0F1raGCI3FfeMLT++G31LSadk344524444/McoUCWd:qk4e0VCI33T++C1uaeN6TR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d681e37654ef44f205af160fdec98688b0b6cdc45ae879f5f3cfb99996dc6c65.exe
- Size
  
  55KB
- MD5
  
  312fa9580da02545b7f8851e39d2254b
- SHA1
  
  b492f959747a26ae3268d7a996a6803a90a2f6ec
- SHA256
  
  d681e37654ef44f205af160fdec98688b0b6cdc45ae879f5f3cfb99996dc6c65
- SHA512
  
  0a1f1bff163696827072779c0f5a02ccbaf5b01543abc658aa90d65868ae1614917a45375684c62ce6ab3e9e68ca9c5014f053de3556162154225f3d952b03dd
- SSDEEP
  
  768:eFq/4qn0F1raGCI3FfeMLT++G31LSadk344524444/McoUCWd:qk4e0VCI33T++C1uaeN6TR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2