f2e76c2439eb6d431b635a2f185e6afe9af30de5ebaf9e0cd553e93484db8316 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f2e76c2439eb6d431b635a2f185e6afe9af30de5ebaf9e0cd553e93484db8316
Size

20KB
Sample

221002-jw7mcagahk
MD5

71a335994ba35030311d54d04862e930
SHA1

51665a2e1e3276de472ed85be8043a47e2da5c38
SHA256

f2e76c2439eb6d431b635a2f185e6afe9af30de5ebaf9e0cd553e93484db8316
SHA512

2fe9fccccac37f58ffb41f5744f1943fb8bd672a9744eaf736bf9b159f85a36f45666d757fbf3a5233321861cf52eab335b1e886ed35de0c833f9b9c3c126dba
SSDEEP

192:BLOnbHfmCiJZ06CV5P36tvlhInROyhaMpx0zCwtRP1oynT85mkq6APTK7+zQzmXr:UfY06g36tfWOgaOxo1SckjMc+zQz7AjR

Score

8^/10

Malware Config

Targets

- Target
  
  f2e76c2439eb6d431b635a2f185e6afe9af30de5ebaf9e0cd553e93484db8316
- Size
  
  20KB
- MD5
  
  71a335994ba35030311d54d04862e930
- SHA1
  
  51665a2e1e3276de472ed85be8043a47e2da5c38
- SHA256
  
  f2e76c2439eb6d431b635a2f185e6afe9af30de5ebaf9e0cd553e93484db8316
- SHA512
  
  2fe9fccccac37f58ffb41f5744f1943fb8bd672a9744eaf736bf9b159f85a36f45666d757fbf3a5233321861cf52eab335b1e886ed35de0c833f9b9c3c126dba
- SSDEEP
  
  192:BLOnbHfmCiJZ06CV5P36tvlhInROyhaMpx0zCwtRP1oynT85mkq6APTK7+zQzmXr:UfY06g36tfWOgaOxo1SckjMc+zQz7AjR
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2