46f7af4fce6c48d1be6bec453fd82958244cdaf24d0295d6ff50c84eca5563dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

46f7af4fce6c48d1be6bec453fd82958244cdaf24d0295d6ff50c84eca5563dd
Size

224KB
Sample

221002-kza8zshgcj
MD5

65cc15f764a7bfe4e73365b3fe62b870
SHA1

5392db358d8d3bb9f57e4b811be9e467d0850d7c
SHA256

46f7af4fce6c48d1be6bec453fd82958244cdaf24d0295d6ff50c84eca5563dd
SHA512

9c9a69c14a4e80ef82a526ef28620bbe5e3460893a19f4a8e8fe4c53a1cdf1a026215b022f4c7ba1c8c7065aba10ceed90dacd9f5895b7cc57cc8b032c9abb9b
SSDEEP

3072:G1PKHtOhCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:G1iH0AYcD6Kad

Score

8^/10

Malware Config

Targets

- Target
  
  46f7af4fce6c48d1be6bec453fd82958244cdaf24d0295d6ff50c84eca5563dd
- Size
  
  224KB
- MD5
  
  65cc15f764a7bfe4e73365b3fe62b870
- SHA1
  
  5392db358d8d3bb9f57e4b811be9e467d0850d7c
- SHA256
  
  46f7af4fce6c48d1be6bec453fd82958244cdaf24d0295d6ff50c84eca5563dd
- SHA512
  
  9c9a69c14a4e80ef82a526ef28620bbe5e3460893a19f4a8e8fe4c53a1cdf1a026215b022f4c7ba1c8c7065aba10ceed90dacd9f5895b7cc57cc8b032c9abb9b
- SSDEEP
  
  3072:G1PKHtOhCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:G1iH0AYcD6Kad
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2