adc9eab6a77722d9d69741ab25ed8f74cce155aea2ebc0313ae89f5dd39c2d91 | Triage

Sharing

General

Target

adc9eab6a77722d9d69741ab25ed8f74cce155aea2ebc0313ae89f5dd39c2d91
Size

29KB
Sample

221002-k7ax7aggh7
MD5

640d7cd132dbfc3d371d8470c86a6000
SHA1

c57f43964550d60678d2f07292cd38d7ca828a33
SHA256

adc9eab6a77722d9d69741ab25ed8f74cce155aea2ebc0313ae89f5dd39c2d91
SHA512

b575ee8cd76ce11266e07159afc870a5371bc6c53a53ed2ee4d519b70d218e6f28c6538c3bc3d27f60ba5ee6da13e77de2db68d98837f951cd10142c7dafada2
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajFnV:X6QFElP6n+gJQMOtEvwDpjBc3

Score

8^/10

Malware Config

Targets

- Target
  
  adc9eab6a77722d9d69741ab25ed8f74cce155aea2ebc0313ae89f5dd39c2d91
- Size
  
  29KB
- MD5
  
  640d7cd132dbfc3d371d8470c86a6000
- SHA1
  
  c57f43964550d60678d2f07292cd38d7ca828a33
- SHA256
  
  adc9eab6a77722d9d69741ab25ed8f74cce155aea2ebc0313ae89f5dd39c2d91
- SHA512
  
  b575ee8cd76ce11266e07159afc870a5371bc6c53a53ed2ee4d519b70d218e6f28c6538c3bc3d27f60ba5ee6da13e77de2db68d98837f951cd10142c7dafada2
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajFnV:X6QFElP6n+gJQMOtEvwDpjBc3
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2