1c88c847571daf17dcf076415cea20cc55e8ad00ae347d759dd565d62ddc7209 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1c88c847571daf17dcf076415cea20cc55e8ad00ae347d759dd565d62ddc7209
Size

1.4MB
Sample

221011-bt6chahah3
MD5

470bc7dad134cfefba1b517a90f43ec4
SHA1

56d5216c1546abb30d4072e7001c45d4b4446583
SHA256

1c88c847571daf17dcf076415cea20cc55e8ad00ae347d759dd565d62ddc7209
SHA512

5ad40ddd28b60e3a9266b9e73139891174d695e5913f8219a10791be480873b99a4634b19daea0a5d5a48bc7375d5b11601a5617538c7e3d5ea1a4fc8033d634
SSDEEP

24576:z6rTqQvLkWhM5R+B7dUkbcxGY5c4dYRWGxyCJC6gBtP4O5XgMHvHYi7aAhIuN:zCnQWhIRS7dU2cgScADvP95z7V

Score

8^/10

Malware Config

Targets

- Target
  
  1c88c847571daf17dcf076415cea20cc55e8ad00ae347d759dd565d62ddc7209
- Size
  
  1.4MB
- MD5
  
  470bc7dad134cfefba1b517a90f43ec4
- SHA1
  
  56d5216c1546abb30d4072e7001c45d4b4446583
- SHA256
  
  1c88c847571daf17dcf076415cea20cc55e8ad00ae347d759dd565d62ddc7209
- SHA512
  
  5ad40ddd28b60e3a9266b9e73139891174d695e5913f8219a10791be480873b99a4634b19daea0a5d5a48bc7375d5b11601a5617538c7e3d5ea1a4fc8033d634
- SSDEEP
  
  24576:z6rTqQvLkWhM5R+B7dUkbcxGY5c4dYRWGxyCJC6gBtP4O5XgMHvHYi7aAhIuN:zCnQWhIRS7dU2cgScADvP95z7V
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2