General
-
Target
2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475
-
Size
772KB
-
Sample
250204-zm1qfatkeq
-
MD5
11efce84e0a22a7cf2cc37e4d70b9d12
-
SHA1
fdf14b95fe44f020456008604cd31536e423b72b
-
SHA256
2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475
-
SHA512
a3ff129fc550c5bc126984d14f0c7cbea78b466636be8608004a30a22d5d179d2e52301015b3e7d9df6fe3455fa7c27fc863e927f1fda4e00b90bee7482c8c15
-
SSDEEP
12288:gmhjJdUlzn3DSudvsh8Awf3XFaZmBITVJPtSrE37yG2LmxCiZ:Xh1alj3DSudvGM3MXTVhtSQWGtx3Z
Static task
static1
Behavioral task
behavioral1
Sample
2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475
-
Size
772KB
-
MD5
11efce84e0a22a7cf2cc37e4d70b9d12
-
SHA1
fdf14b95fe44f020456008604cd31536e423b72b
-
SHA256
2706e6516e6f2096e97947c061554a30c15df25b323f8d8ef26a83498d16d475
-
SHA512
a3ff129fc550c5bc126984d14f0c7cbea78b466636be8608004a30a22d5d179d2e52301015b3e7d9df6fe3455fa7c27fc863e927f1fda4e00b90bee7482c8c15
-
SSDEEP
12288:gmhjJdUlzn3DSudvsh8Awf3XFaZmBITVJPtSrE37yG2LmxCiZ:Xh1alj3DSudvGM3MXTVhtSQWGtx3Z
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-
Enumerates processes with tasklist
-
MITRE ATT&CK Enterprise v15
Discovery
Network Service Discovery
1Network Share Discovery
1Process Discovery
1Query Registry
1Remote System Discovery
1System Information Discovery
4System Location Discovery
1System Language Discovery
1System Network Configuration Discovery
1Internet Connection Discovery
1System Network Connections Discovery
1