45d3ee96988463c017553fbb2cfee6a2df1ab6043d10710885c7e735f320ae17 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

45d3ee96988463c017553fbb2cfee6a2df1ab6043d10710885c7e735f320ae17
Size

1.8MB
Sample

221006-p22aeahdd9
MD5

2ed4641a456132785d559f1a35bb7f32
SHA1

1db822c014dc13c3c4e3774d9e68a410ed6190d7
SHA256

45d3ee96988463c017553fbb2cfee6a2df1ab6043d10710885c7e735f320ae17
SHA512

67c183e8a6fa8c5cfd3be7b1473fe297dbeecb5624fd4f086c8b59fc19ac19260d69b323cf248b35706124bd130caf339cc4d24d824b771bbd757d68958eb164
SSDEEP

49152:S3dem+vz9uXqZLzUK27p80Xu94v6ILkVc:SKZG0LzfEp80BCkr

Score

7^/10

Malware Config

Targets

- Target
  
  45d3ee96988463c017553fbb2cfee6a2df1ab6043d10710885c7e735f320ae17
- Size
  
  1.8MB
- MD5
  
  2ed4641a456132785d559f1a35bb7f32
- SHA1
  
  1db822c014dc13c3c4e3774d9e68a410ed6190d7
- SHA256
  
  45d3ee96988463c017553fbb2cfee6a2df1ab6043d10710885c7e735f320ae17
- SHA512
  
  67c183e8a6fa8c5cfd3be7b1473fe297dbeecb5624fd4f086c8b59fc19ac19260d69b323cf248b35706124bd130caf339cc4d24d824b771bbd757d68958eb164
- SSDEEP
  
  49152:S3dem+vz9uXqZLzUK27p80Xu94v6ILkVc:SKZG0LzfEp80BCkr
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1