4aee9c6d2a335331df0f2f83db28d5962c21d6dbc2e52d4982d21540f5b86a6b | Triage

Sharing

General

Target

4aee9c6d2a335331df0f2f83db28d5962c21d6dbc2e52d4982d21540f5b86a6bN.exe
Size

6KB
Sample

250120-kz7l7a1qfv
MD5

ee5930bb9076e40cdd90c55627030230
SHA1

9ecb1f4ddaef9c4263d235dee484d4f69f653074
SHA256

4aee9c6d2a335331df0f2f83db28d5962c21d6dbc2e52d4982d21540f5b86a6b
SHA512

f74be7f062436c4cac3ea88c25ae7647ffb75442f4fbaeef789e666716075eebd5432cc156ff6d3f25b3afe95cdab45cae80f2fb935f8b0e5083ae7e52be21b7
SSDEEP

48:6uwMhQUAcp/pezm4JoXcA2hb/mumquIFyG1laAXJtyBSUVDlyCS7D1g+dfKoaxZJ:Kpclpea/Umq5o2ty4UxgCgS6YX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4aee9c6d2a335331df0f2f83db28d5962c21d6dbc2e52d4982d21540f5b86a6bN.exe
- Size
  
  6KB
- MD5
  
  ee5930bb9076e40cdd90c55627030230
- SHA1
  
  9ecb1f4ddaef9c4263d235dee484d4f69f653074
- SHA256
  
  4aee9c6d2a335331df0f2f83db28d5962c21d6dbc2e52d4982d21540f5b86a6b
- SHA512
  
  f74be7f062436c4cac3ea88c25ae7647ffb75442f4fbaeef789e666716075eebd5432cc156ff6d3f25b3afe95cdab45cae80f2fb935f8b0e5083ae7e52be21b7
- SSDEEP
  
  48:6uwMhQUAcp/pezm4JoXcA2hb/mumquIFyG1laAXJtyBSUVDlyCS7D1g+dfKoaxZJ:Kpclpea/Umq5o2ty4UxgCgS6YX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2