b8c31274b96388037799979efc629d29bc0c4d7dfd0ed34e129a65018ccc1c9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8c31274b96388037799979efc629d29bc0c4d7dfd0ed34e129a65018ccc1c9f
Size

18KB
Sample

221011-sbcqxaafh8
MD5

57570f21f8b957b6adc90c0364bd2870
SHA1

91ac185db5cd5a4b99302eebbd542d303296c25b
SHA256

b8c31274b96388037799979efc629d29bc0c4d7dfd0ed34e129a65018ccc1c9f
SHA512

cd3c030370c60afb5f5f56e4306d7ab459c1d706eac1e954b9d4d6ecca701c8048066b9d2a1ca2cf2e5f17ad054d5bbdaff9c48bf2f29fa726eef6ecc753d6ce
SSDEEP

192:A0KdpgOE+DwX+i/oheTdNuLLrH4D98Q2JiupC1tS21QCFaIb:9kGAu+WUO24D944SCFbb

Score

8^/10

Malware Config

Targets

- Target
  
  b8c31274b96388037799979efc629d29bc0c4d7dfd0ed34e129a65018ccc1c9f
- Size
  
  18KB
- MD5
  
  57570f21f8b957b6adc90c0364bd2870
- SHA1
  
  91ac185db5cd5a4b99302eebbd542d303296c25b
- SHA256
  
  b8c31274b96388037799979efc629d29bc0c4d7dfd0ed34e129a65018ccc1c9f
- SHA512
  
  cd3c030370c60afb5f5f56e4306d7ab459c1d706eac1e954b9d4d6ecca701c8048066b9d2a1ca2cf2e5f17ad054d5bbdaff9c48bf2f29fa726eef6ecc753d6ce
- SSDEEP
  
  192:A0KdpgOE+DwX+i/oheTdNuLLrH4D98Q2JiupC1tS21QCFaIb:9kGAu+WUO24D944SCFbb
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2