1bbb090909165950b015dab4d3ee6c5eb853a8deec17442d8cdd5625dc10ba0a | Triage

Sharing

General

Target

1bbb090909165950b015dab4d3ee6c5eb853a8deec17442d8cdd5625dc10ba0a
Size

5.7MB
Sample

221008-w213zafbe7
MD5

dba9c9d71df47a69e672ef3b2b1cc58f
SHA1

fcff3195f5fe711511d38945c56afe7204e544f0
SHA256

1bbb090909165950b015dab4d3ee6c5eb853a8deec17442d8cdd5625dc10ba0a
SHA512

30284b238477ec0282acf4e429826915cbc6a62870b22b8fa469ca8ab55e07d25f3afcb0ee9d76028982d53ccd844006e904cfa71331dab95550149cfb761556
SSDEEP

98304:jU4P5J/Ii0Rzx+5drGi/hwZs+gWfxgd8O06CTUiCS5rqzXbE0xNf9CYRTz9aep01:d/IBRzxad5wZuOxgd8hHw+6E4TCWTL01

Score

8^/10

Malware Config

Targets

- Target
  
  1bbb090909165950b015dab4d3ee6c5eb853a8deec17442d8cdd5625dc10ba0a
- Size
  
  5.7MB
- MD5
  
  dba9c9d71df47a69e672ef3b2b1cc58f
- SHA1
  
  fcff3195f5fe711511d38945c56afe7204e544f0
- SHA256
  
  1bbb090909165950b015dab4d3ee6c5eb853a8deec17442d8cdd5625dc10ba0a
- SHA512
  
  30284b238477ec0282acf4e429826915cbc6a62870b22b8fa469ca8ab55e07d25f3afcb0ee9d76028982d53ccd844006e904cfa71331dab95550149cfb761556
- SSDEEP
  
  98304:jU4P5J/Ii0Rzx+5drGi/hwZs+gWfxgd8O06CTUiCS5rqzXbE0xNf9CYRTz9aep01:d/IBRzxad5wZuOxgd8hHw+6E4TCWTL01
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2