e79b0c62fe4f962385f240e1d9164b3fc4be263cdfc23b3e035b673c04689695 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e79b0c62fe4f962385f240e1d9164b3fc4be263cdfc23b3e035b673c04689695
Size

19KB
Sample

221002-3e2vbafbg5
MD5

7960a3e1e57c3330954e7b4a584cb980
SHA1

eff6d3f5ff2ef1283afc31d09eee298a0909b30a
SHA256

e79b0c62fe4f962385f240e1d9164b3fc4be263cdfc23b3e035b673c04689695
SHA512

c31eef95e9ea6218b5b662f9bcbe6fe3abfbf63de03be1b0827005ae0ec40dbda802a0b45a3092cd15a7f2caa1e52142aaaa99a6d69d8f73d595af2b17dcc0c9
SSDEEP

192:cjdlB2ZAAfyBnKhMS+K+JYw7U3AdhfUd6ORlomDNwKSQjqPL+1C8MxxPeZrd9j:cIZAvJmRPDN/jSyC8MxVsj

Score

8^/10

Malware Config

Targets

- Target
  
  e79b0c62fe4f962385f240e1d9164b3fc4be263cdfc23b3e035b673c04689695
- Size
  
  19KB
- MD5
  
  7960a3e1e57c3330954e7b4a584cb980
- SHA1
  
  eff6d3f5ff2ef1283afc31d09eee298a0909b30a
- SHA256
  
  e79b0c62fe4f962385f240e1d9164b3fc4be263cdfc23b3e035b673c04689695
- SHA512
  
  c31eef95e9ea6218b5b662f9bcbe6fe3abfbf63de03be1b0827005ae0ec40dbda802a0b45a3092cd15a7f2caa1e52142aaaa99a6d69d8f73d595af2b17dcc0c9
- SSDEEP
  
  192:cjdlB2ZAAfyBnKhMS+K+JYw7U3AdhfUd6ORlomDNwKSQjqPL+1C8MxxPeZrd9j:cIZAvJmRPDN/jSyC8MxVsj
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2