c2322d3a941458113703297a64885d2a40d38c4ed6f32363936af5042272c339 | Triage

Sharing

General

Target

c2322d3a941458113703297a64885d2a40d38c4ed6f32363936af5042272c339
Size

22KB
Sample

221011-df3essbgh4
MD5

7b6be4304c635804d31ac74de4eddd30
SHA1

706e5e59f831d6d609a976b2dce802161f9540a3
SHA256

c2322d3a941458113703297a64885d2a40d38c4ed6f32363936af5042272c339
SHA512

dcfed1acf598c820ace5c5e0ea2b1193204090e4211a83caa4baec65ed6cd5157326af9832541bb1916bbb028b2157bf0c20d2b6cad492a797c9907d47071e71
SSDEEP

384:Dh2uKtn2f09/7wXR9cq+mwjgOZhRKvkRWadPFAvEoJpSr1xeM5Ms:L4Y8qR9cq7qdWadPFAvbK1

Score

8^/10

Malware Config

Targets

- Target
  
  c2322d3a941458113703297a64885d2a40d38c4ed6f32363936af5042272c339
- Size
  
  22KB
- MD5
  
  7b6be4304c635804d31ac74de4eddd30
- SHA1
  
  706e5e59f831d6d609a976b2dce802161f9540a3
- SHA256
  
  c2322d3a941458113703297a64885d2a40d38c4ed6f32363936af5042272c339
- SHA512
  
  dcfed1acf598c820ace5c5e0ea2b1193204090e4211a83caa4baec65ed6cd5157326af9832541bb1916bbb028b2157bf0c20d2b6cad492a797c9907d47071e71
- SSDEEP
  
  384:Dh2uKtn2f09/7wXR9cq+mwjgOZhRKvkRWadPFAvEoJpSr1xeM5Ms:L4Y8qR9cq7qdWadPFAvbK1
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2