62106da8268c837614fe3639464fdfc1d55018819e4daeecd4507523cebd58e4 | Triage

Sharing

General

Target

62106da8268c837614fe3639464fdfc1d55018819e4daeecd4507523cebd58e4
Size

447KB
Sample

221003-sy8rvschg9
MD5

6e49cfba6ecb17375cfbe18ec29c4440
SHA1

d7e4610cc880d42d0ffe978b72d9d032df3dbdda
SHA256

62106da8268c837614fe3639464fdfc1d55018819e4daeecd4507523cebd58e4
SHA512

eb82a3ead9067bac7d57e3ffaeab5eef1872ed86e9a206d58efb4e3a2b164f28a8e23a15bf9ea9718e928eed760f8f08f0e952f7d9705f1d7440dc4f7e42d663
SSDEEP

12288:zK7a7KUexh62phxB7wyxGV6Z/4N49cCrd:LBe9tfGV6N4N4SQd

Score

8^/10

Malware Config

Targets

- Target
  
  62106da8268c837614fe3639464fdfc1d55018819e4daeecd4507523cebd58e4
- Size
  
  447KB
- MD5
  
  6e49cfba6ecb17375cfbe18ec29c4440
- SHA1
  
  d7e4610cc880d42d0ffe978b72d9d032df3dbdda
- SHA256
  
  62106da8268c837614fe3639464fdfc1d55018819e4daeecd4507523cebd58e4
- SHA512
  
  eb82a3ead9067bac7d57e3ffaeab5eef1872ed86e9a206d58efb4e3a2b164f28a8e23a15bf9ea9718e928eed760f8f08f0e952f7d9705f1d7440dc4f7e42d663
- SSDEEP
  
  12288:zK7a7KUexh62phxB7wyxGV6Z/4N49cCrd:LBe9tfGV6N4N4SQd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2