29ae5698c0e51879e966206654f67c663c87786dfdaed530af17bf34ba345358 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

29ae5698c0e51879e966206654f67c663c87786dfdaed530af17bf34ba345358
Size

1.9MB
Sample

220925-tave1afce3
MD5

f1cdf220537bd3c314d7d9c197fa886a
SHA1

6489ba218491d90083aa9dbcf32b05fc3908b40d
SHA256

29ae5698c0e51879e966206654f67c663c87786dfdaed530af17bf34ba345358
SHA512

972ce9d4d9b1a88117f16ae6ed71957776179f6fb85c92eee7fa68f355eb0aa6f0e74715158aab7f4cfea846595d9363324da82ad75dfb3913e8310b322927fd
SSDEEP

49152:EuWxZYw7Vwkj+rGqeGPFQVb956VLrmvZ4Wg:EuW/FV2rGqeAQtr6VLrUw

Score

7^/10

Malware Config

Targets

- Target
  
  29ae5698c0e51879e966206654f67c663c87786dfdaed530af17bf34ba345358
- Size
  
  1.9MB
- MD5
  
  f1cdf220537bd3c314d7d9c197fa886a
- SHA1
  
  6489ba218491d90083aa9dbcf32b05fc3908b40d
- SHA256
  
  29ae5698c0e51879e966206654f67c663c87786dfdaed530af17bf34ba345358
- SHA512
  
  972ce9d4d9b1a88117f16ae6ed71957776179f6fb85c92eee7fa68f355eb0aa6f0e74715158aab7f4cfea846595d9363324da82ad75dfb3913e8310b322927fd
- SSDEEP
  
  49152:EuWxZYw7Vwkj+rGqeGPFQVb956VLrmvZ4Wg:EuW/FV2rGqeAQtr6VLrUw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1