97584e83257ef350bb41148b1b39c0863f156dc7645e726b3d2e0aa875562ab2 | Triage

Sharing

General

Target

97584e83257ef350bb41148b1b39c0863f156dc7645e726b3d2e0aa875562ab2
Size

27KB
Sample

221011-hzn4qsbde4
MD5

66caddc35c3a24de2274f3a6a99bd570
SHA1

52205dd2f6735f59a6298b27705998134b865541
SHA256

97584e83257ef350bb41148b1b39c0863f156dc7645e726b3d2e0aa875562ab2
SHA512

cecb8dfdf8c7743385cbc6bfba6ad339333caf37d85badde8ec54799c849b23c40090756ea6f1292460d83fc8b5fc37126a2514ad529456c1edecc2817c2433d
SSDEEP

768:osJX+vzlGKec5+RZDKzepeNPmG6JX64yoXtC:osJElGKecg/DcepeNPmG6JXDh9C

Score

8^/10

Malware Config

Targets

- Target
  
  97584e83257ef350bb41148b1b39c0863f156dc7645e726b3d2e0aa875562ab2
- Size
  
  27KB
- MD5
  
  66caddc35c3a24de2274f3a6a99bd570
- SHA1
  
  52205dd2f6735f59a6298b27705998134b865541
- SHA256
  
  97584e83257ef350bb41148b1b39c0863f156dc7645e726b3d2e0aa875562ab2
- SHA512
  
  cecb8dfdf8c7743385cbc6bfba6ad339333caf37d85badde8ec54799c849b23c40090756ea6f1292460d83fc8b5fc37126a2514ad529456c1edecc2817c2433d
- SSDEEP
  
  768:osJX+vzlGKec5+RZDKzepeNPmG6JX64yoXtC:osJElGKecg/DcepeNPmG6JXDh9C
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2