3c0357edf487aab9d87da08b24e33d848ae3c6f49f45d3d1e9ce2e882fdb23f2 | Triage

Sharing

General

Target

3c0357edf487aab9d87da08b24e33d848ae3c6f49f45d3d1e9ce2e882fdb23f2
Size

19KB
Sample

221002-q2rxeahch6
MD5

66ffde8dfc8362bbe0397292b33ec090
SHA1

e6ec0127888a9170a6e5be919e16f25ffbc05bcf
SHA256

3c0357edf487aab9d87da08b24e33d848ae3c6f49f45d3d1e9ce2e882fdb23f2
SHA512

476dd7c8b95be3a8cc59a6ca3e6fa60f80da2532413e87cb6bfa20b443b44fa3bab27213c7f7c0723de5506e2ac77ffa2d0a27e08c020f52269a01eea068263a
SSDEEP

192:0KMku1uKAusfu51v7/IvY/tC5sFCsKXzfm/+j171j+QkC4duC8ffg0WYmAb:0KMku1uKAus4vC5FD+KPkChLWIb

Score

8^/10

Malware Config

Targets

- Target
  
  3c0357edf487aab9d87da08b24e33d848ae3c6f49f45d3d1e9ce2e882fdb23f2
- Size
  
  19KB
- MD5
  
  66ffde8dfc8362bbe0397292b33ec090
- SHA1
  
  e6ec0127888a9170a6e5be919e16f25ffbc05bcf
- SHA256
  
  3c0357edf487aab9d87da08b24e33d848ae3c6f49f45d3d1e9ce2e882fdb23f2
- SHA512
  
  476dd7c8b95be3a8cc59a6ca3e6fa60f80da2532413e87cb6bfa20b443b44fa3bab27213c7f7c0723de5506e2ac77ffa2d0a27e08c020f52269a01eea068263a
- SSDEEP
  
  192:0KMku1uKAusfu51v7/IvY/tC5sFCsKXzfm/+j171j+QkC4duC8ffg0WYmAb:0KMku1uKAus4vC5FD+KPkChLWIb
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2