3ae87f999b66ac3382127fa400a5c4852574498cd24390885051c37e568d4ce7 | Triage

Sharing

General

Target

3ae87f999b66ac3382127fa400a5c4852574498cd24390885051c37e568d4ce7
Size

187KB
Sample

221019-24f4gacch9
MD5

81dd9ce7f82c735af905ae13de962d49
SHA1

3eb3b4c7766e46dbb5c60f26ffffa26b38216fd6
SHA256

3ae87f999b66ac3382127fa400a5c4852574498cd24390885051c37e568d4ce7
SHA512

c39366d5be22cac3898c2835f488bb8d1295b3f19faf2d38b05cee0cb006b81039ccaa65e45203be26507ca3a96f08b3e0d69794087fdb77e11a526a63312bbb
SSDEEP

3072:fcTadsWbvOxyEOk/fMgOOxtIyz8AudV3iB3x+y9SNcHScK6F5oCHpXGMQoDazRz6:kT+Lk3fxqyzyil2GyUHdJWMQLm

Score

8^/10

Malware Config

Targets

- Target
  
  3ae87f999b66ac3382127fa400a5c4852574498cd24390885051c37e568d4ce7
- Size
  
  187KB
- MD5
  
  81dd9ce7f82c735af905ae13de962d49
- SHA1
  
  3eb3b4c7766e46dbb5c60f26ffffa26b38216fd6
- SHA256
  
  3ae87f999b66ac3382127fa400a5c4852574498cd24390885051c37e568d4ce7
- SHA512
  
  c39366d5be22cac3898c2835f488bb8d1295b3f19faf2d38b05cee0cb006b81039ccaa65e45203be26507ca3a96f08b3e0d69794087fdb77e11a526a63312bbb
- SSDEEP
  
  3072:fcTadsWbvOxyEOk/fMgOOxtIyz8AudV3iB3x+y9SNcHScK6F5oCHpXGMQoDazRz6:kT+Lk3fxqyzyil2GyUHdJWMQLm
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2