88cf2e789b4abfae73fc6f06edbbc89c0988d59f4cfb067c78f93199ab964576 | Triage

Sharing

General

Target

88cf2e789b4abfae73fc6f06edbbc89c0988d59f4cfb067c78f93199ab964576
Size

3.5MB
Sample

220919-l52hssfhcm
MD5

8f330ec20c0d9890237d987c32f4d58c
SHA1

58ba4ce0e7f3e21bda06c7cd597a70b02b90d5e6
SHA256

88cf2e789b4abfae73fc6f06edbbc89c0988d59f4cfb067c78f93199ab964576
SHA512

28d2c73c6de7eecd4abba63dfd5385da8ad843bace7bd9e20adedc38ab5fff7e5d187a1d8f223976b87001b7c1ce95bfd3f273a8c7c98eddfdf3cd426078c946
SSDEEP

98304:FE4LQabRl+DigoYG3ygWUmMBwfP6Id+zC:F9Fl+SzCgHNyn6Idd

Score

8^/10

Malware Config

Targets

- Target
  
  88cf2e789b4abfae73fc6f06edbbc89c0988d59f4cfb067c78f93199ab964576
- Size
  
  3.5MB
- MD5
  
  8f330ec20c0d9890237d987c32f4d58c
- SHA1
  
  58ba4ce0e7f3e21bda06c7cd597a70b02b90d5e6
- SHA256
  
  88cf2e789b4abfae73fc6f06edbbc89c0988d59f4cfb067c78f93199ab964576
- SHA512
  
  28d2c73c6de7eecd4abba63dfd5385da8ad843bace7bd9e20adedc38ab5fff7e5d187a1d8f223976b87001b7c1ce95bfd3f273a8c7c98eddfdf3cd426078c946
- SSDEEP
  
  98304:FE4LQabRl+DigoYG3ygWUmMBwfP6Id+zC:F9Fl+SzCgHNyn6Idd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2