ffd69434348e7891d93c45996102a88a7831567ff89613a19e7a5327739b301f | Triage

Sharing

General

Target

ffd69434348e7891d93c45996102a88a7831567ff89613a19e7a5327739b301f
Size

1.3MB
Sample

221014-n2vbesddb6
MD5

9726b9488337ec1d6f204fe05a22f343
SHA1

46b07beed909e1bf83452996a5bdb56c0d126aa3
SHA256

ffd69434348e7891d93c45996102a88a7831567ff89613a19e7a5327739b301f
SHA512

09be96933ceb87e9be5d0f436c9f0e81f7489e81cea99d1f656a24d39b17a7f7a5a989ddc86a1694d466382b9e22b5e892b41e1cd115cf87bd43ec9c1551ef55
SSDEEP

24576:nODjvzy+idefY9ZC5w4P8iJeQzjYaHH83pAGawLozvyM/Ki1/1RKd5Z4eM9:GF8ZCRDJ9jYg83p8oov/tZ6doeM9

Score

8^/10

Malware Config

Targets

- Target
  
  ffd69434348e7891d93c45996102a88a7831567ff89613a19e7a5327739b301f
- Size
  
  1.3MB
- MD5
  
  9726b9488337ec1d6f204fe05a22f343
- SHA1
  
  46b07beed909e1bf83452996a5bdb56c0d126aa3
- SHA256
  
  ffd69434348e7891d93c45996102a88a7831567ff89613a19e7a5327739b301f
- SHA512
  
  09be96933ceb87e9be5d0f436c9f0e81f7489e81cea99d1f656a24d39b17a7f7a5a989ddc86a1694d466382b9e22b5e892b41e1cd115cf87bd43ec9c1551ef55
- SSDEEP
  
  24576:nODjvzy+idefY9ZC5w4P8iJeQzjYaHH83pAGawLozvyM/Ki1/1RKd5Z4eM9:GF8ZCRDJ9jYg83p8oov/tZ6doeM9
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2