ab52fbed12e2f1e7169fb11005c9a0551ac3983b457da5644de10773faa8d44d | Triage

Sharing

General

Target

ab52fbed12e2f1e7169fb11005c9a0551ac3983b457da5644de10773faa8d44d
Size

217KB
Sample

221002-3l7ddafef2
MD5

3b73a39e49d514af3e2632616d12c9f4
SHA1

3d955bad2f33e6232c8fa13995174b1158a94aa6
SHA256

ab52fbed12e2f1e7169fb11005c9a0551ac3983b457da5644de10773faa8d44d
SHA512

149c59a5345f220e6f61ac0ebdadfe6f5a80281df0cf2da6dc36f77d82efe24e99128bdd0e88dd324c13564e1e31650dc27e54f52bf2be667e305204bb9a174f
SSDEEP

6144:8d93ZBZMbqYgomHmXbOkARuNaEruapAoMU22IUzYsD:8r3ZBIR2hErRpVF0sD

Score

8^/10

Malware Config

Targets

- Target
  
  ab52fbed12e2f1e7169fb11005c9a0551ac3983b457da5644de10773faa8d44d
- Size
  
  217KB
- MD5
  
  3b73a39e49d514af3e2632616d12c9f4
- SHA1
  
  3d955bad2f33e6232c8fa13995174b1158a94aa6
- SHA256
  
  ab52fbed12e2f1e7169fb11005c9a0551ac3983b457da5644de10773faa8d44d
- SHA512
  
  149c59a5345f220e6f61ac0ebdadfe6f5a80281df0cf2da6dc36f77d82efe24e99128bdd0e88dd324c13564e1e31650dc27e54f52bf2be667e305204bb9a174f
- SSDEEP
  
  6144:8d93ZBZMbqYgomHmXbOkARuNaEruapAoMU22IUzYsD:8r3ZBIR2hErRpVF0sD
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2