48e8d4339990a04ff24c3cb2e4d5b366ce6bbcd7920bd07db59198247bd7b405 | Triage

Sharing

General

Target

48e8d4339990a04ff24c3cb2e4d5b366ce6bbcd7920bd07db59198247bd7b405
Size

124KB
Sample

220919-hm1xrsghfk
MD5

66b3d326528d404d11d40dd382796dd7
SHA1

a9e6b71d80fe1bc4fac071d50eca677742a1919b
SHA256

48e8d4339990a04ff24c3cb2e4d5b366ce6bbcd7920bd07db59198247bd7b405
SHA512

60b65938fce481b604968a058a45fe044f62b9684383dd5553bfc10012da9a4b0ed380cfd1ce42b3c2994843ebe74cad064a6ef85e8e2f06cbcd40aa94e61729
SSDEEP

768:C9vUs8RBKiI5Xp+1E/jUJA3ZebghwIFky+olhDvuZw+V0dQd3zKipFJyHXm0YQXn:SvUfEX5LyA3ZebRIuyfvu6YYKUx

Score

8^/10

Malware Config

Targets

- Target
  
  48e8d4339990a04ff24c3cb2e4d5b366ce6bbcd7920bd07db59198247bd7b405
- Size
  
  124KB
- MD5
  
  66b3d326528d404d11d40dd382796dd7
- SHA1
  
  a9e6b71d80fe1bc4fac071d50eca677742a1919b
- SHA256
  
  48e8d4339990a04ff24c3cb2e4d5b366ce6bbcd7920bd07db59198247bd7b405
- SHA512
  
  60b65938fce481b604968a058a45fe044f62b9684383dd5553bfc10012da9a4b0ed380cfd1ce42b3c2994843ebe74cad064a6ef85e8e2f06cbcd40aa94e61729
- SSDEEP
  
  768:C9vUs8RBKiI5Xp+1E/jUJA3ZebghwIFky+olhDvuZw+V0dQd3zKipFJyHXm0YQXn:SvUfEX5LyA3ZebRIuyfvu6YYKUx
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2