2253ed6c97de9278719860d0e5cef5cb7e7fd18e859d59a133ea8ce279f221a1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2253ed6c97de9278719860d0e5cef5cb7e7fd18e859d59a133ea8ce279f221a1
Size

1.9MB
Sample

220927-drpyvadeen
MD5

45fafd279c65e93b93b45568e384355c
SHA1

ef7daf5988a582f4605375e8b009be78c3f283ed
SHA256

2253ed6c97de9278719860d0e5cef5cb7e7fd18e859d59a133ea8ce279f221a1
SHA512

1e5ba98f498d64109a39fcc81bd00bd027df44e4275eea3536447bc7dea302d8092327e55a1e51c2f445b657009ed2b4ef4f922bcc086545c736e819af8ed7a1
SSDEEP

24576:hZ7Xar2VsBq/OebC+d0phmPQFEzAmB331Y/3fP2HptTBRHzH7N4Yw9P+p7z1Gf93:Nsv+d01FEMmT23fPm/nbnw9XRTgzZET

Score

7^/10

Malware Config

Targets

- Target
  
  2253ed6c97de9278719860d0e5cef5cb7e7fd18e859d59a133ea8ce279f221a1
- Size
  
  1.9MB
- MD5
  
  45fafd279c65e93b93b45568e384355c
- SHA1
  
  ef7daf5988a582f4605375e8b009be78c3f283ed
- SHA256
  
  2253ed6c97de9278719860d0e5cef5cb7e7fd18e859d59a133ea8ce279f221a1
- SHA512
  
  1e5ba98f498d64109a39fcc81bd00bd027df44e4275eea3536447bc7dea302d8092327e55a1e51c2f445b657009ed2b4ef4f922bcc086545c736e819af8ed7a1
- SSDEEP
  
  24576:hZ7Xar2VsBq/OebC+d0phmPQFEzAmB331Y/3fP2HptTBRHzH7N4Yw9P+p7z1Gf93:Nsv+d01FEMmT23fPm/nbnw9XRTgzZET
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1