d03a641a4d324c769a85b5fba02b574cd118beb45eedcfaf68fe1a5ca3fce181 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d03a641a4d324c769a85b5fba02b574cd118beb45eedcfaf68fe1a5ca3fce181
Size

28KB
Sample

221011-ejwbbsdgdl
MD5

5309e0cdae3f6bed06ecc47a9cdbdef0
SHA1

3749f841c259115d41b23b92c9df1cfebbc3c3b6
SHA256

d03a641a4d324c769a85b5fba02b574cd118beb45eedcfaf68fe1a5ca3fce181
SHA512

9a46c04b3c406f5ea34eae12119ba88c2289e1a9d90e02435eda2655b03ca11dbdaee46f419845d1b273f3e970d1345494532ad300547b5c0608d00410b33158
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSG:X6QFElP6n+gJQMOtEvwDpjBcSG

Score

8^/10

Malware Config

Targets

- Target
  
  d03a641a4d324c769a85b5fba02b574cd118beb45eedcfaf68fe1a5ca3fce181
- Size
  
  28KB
- MD5
  
  5309e0cdae3f6bed06ecc47a9cdbdef0
- SHA1
  
  3749f841c259115d41b23b92c9df1cfebbc3c3b6
- SHA256
  
  d03a641a4d324c769a85b5fba02b574cd118beb45eedcfaf68fe1a5ca3fce181
- SHA512
  
  9a46c04b3c406f5ea34eae12119ba88c2289e1a9d90e02435eda2655b03ca11dbdaee46f419845d1b273f3e970d1345494532ad300547b5c0608d00410b33158
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSG:X6QFElP6n+gJQMOtEvwDpjBcSG
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2