f91246b4fcb1e309bd127d8918e5ddb11b00dfcae230587084d5deb1fbaf44de | Triage

Sharing

General

Target

f91246b4fcb1e309bd127d8918e5ddb11b00dfcae230587084d5deb1fbaf44de
Size

964KB
Sample

221001-1wed8saegj
MD5

73be41dbf210b5104dcf8d43755a0f6d
SHA1

fca0ec27f58309f8bb9015b0eede9f3d1712c25e
SHA256

f91246b4fcb1e309bd127d8918e5ddb11b00dfcae230587084d5deb1fbaf44de
SHA512

f69942fc588a57c5637bbb1f0837a1f085cd107389a1b92eb8b04f60eb56e4b06d97bc60ccc849842bd1e2059dd6ccf85580ebda3d286f0468fbd701d65b3b9a
SSDEEP

12288:KL0yTl3M1bZyJbXJBOiXbs3VGbAj7oWlW1Xk7uDLiHG1pEl1yIQwRdpgU7/7Ov8:yMRsJjK6b2jBl6k7uIFLTgU88

Score

8^/10

Malware Config

Targets

- Target
  
  f91246b4fcb1e309bd127d8918e5ddb11b00dfcae230587084d5deb1fbaf44de
- Size
  
  964KB
- MD5
  
  73be41dbf210b5104dcf8d43755a0f6d
- SHA1
  
  fca0ec27f58309f8bb9015b0eede9f3d1712c25e
- SHA256
  
  f91246b4fcb1e309bd127d8918e5ddb11b00dfcae230587084d5deb1fbaf44de
- SHA512
  
  f69942fc588a57c5637bbb1f0837a1f085cd107389a1b92eb8b04f60eb56e4b06d97bc60ccc849842bd1e2059dd6ccf85580ebda3d286f0468fbd701d65b3b9a
- SSDEEP
  
  12288:KL0yTl3M1bZyJbXJBOiXbs3VGbAj7oWlW1Xk7uDLiHG1pEl1yIQwRdpgU7/7Ov8:yMRsJjK6b2jBl6k7uIFLTgU88
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2