33db501f3ed9562fe40cf7b507d2fd2e0167832a9d57f124fd159fc25d2abcee | Triage

Sharing

General

Target

33db501f3ed9562fe40cf7b507d2fd2e0167832a9d57f124fd159fc25d2abcee
Size

281KB
Sample

221003-r9x9tsbga5
MD5

6476bc510af26fc8e510b344acf78ae0
SHA1

e35428f3d1821467706cd0e9a5bb10f4c45a911a
SHA256

33db501f3ed9562fe40cf7b507d2fd2e0167832a9d57f124fd159fc25d2abcee
SHA512

c3be6017e780aad1f28fbad2c6056375034386a77cdeffe8c07bad3177922b44806ae5ba5a3747d0dff938b2d6073ef383ba1c65479406293cef75deb338a797
SSDEEP

6144:NSFUXrX1/anbtZks06vhodqYrDDwuB4YGylfa/YK1wot31:NOUj1/ass0Cc8pvylfUpF

Score

8^/10

Malware Config

Targets

- Target
  
  33db501f3ed9562fe40cf7b507d2fd2e0167832a9d57f124fd159fc25d2abcee
- Size
  
  281KB
- MD5
  
  6476bc510af26fc8e510b344acf78ae0
- SHA1
  
  e35428f3d1821467706cd0e9a5bb10f4c45a911a
- SHA256
  
  33db501f3ed9562fe40cf7b507d2fd2e0167832a9d57f124fd159fc25d2abcee
- SHA512
  
  c3be6017e780aad1f28fbad2c6056375034386a77cdeffe8c07bad3177922b44806ae5ba5a3747d0dff938b2d6073ef383ba1c65479406293cef75deb338a797
- SSDEEP
  
  6144:NSFUXrX1/anbtZks06vhodqYrDDwuB4YGylfa/YK1wot31:NOUj1/ass0Cc8pvylfUpF
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2