ac7fda1ebc4423bd2dde110a44a51738e349528ad86d27e1cc6353ba55d3c1f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac7fda1ebc4423bd2dde110a44a51738e349528ad86d27e1cc6353ba55d3c1f1
Size

141KB
Sample

221019-f7a6qsfdam
MD5

d577ca3ded6064571964e81d653b7032
SHA1

16f0586d74c27fa7f93a5841f1a8af58f90eef90
SHA256

ac7fda1ebc4423bd2dde110a44a51738e349528ad86d27e1cc6353ba55d3c1f1
SHA512

95d39fffe186814db96dc5a643ed4d226c40261720cfe9c8c051ab3b82e01fabc0d85571e539fd29c0bb22a9cd867c3349b8a64a9f165974712171eb04e0fd7f
SSDEEP

3072:VEyC8lvp2GyvYIDqgBHhpxqnyYHecOlA55iR35E6M2ipaEloZEdNR:qUEXpDqatYNOMkEneZKf

Score

8^/10

Malware Config

Targets

- Target
  
  ac7fda1ebc4423bd2dde110a44a51738e349528ad86d27e1cc6353ba55d3c1f1
- Size
  
  141KB
- MD5
  
  d577ca3ded6064571964e81d653b7032
- SHA1
  
  16f0586d74c27fa7f93a5841f1a8af58f90eef90
- SHA256
  
  ac7fda1ebc4423bd2dde110a44a51738e349528ad86d27e1cc6353ba55d3c1f1
- SHA512
  
  95d39fffe186814db96dc5a643ed4d226c40261720cfe9c8c051ab3b82e01fabc0d85571e539fd29c0bb22a9cd867c3349b8a64a9f165974712171eb04e0fd7f
- SSDEEP
  
  3072:VEyC8lvp2GyvYIDqgBHhpxqnyYHecOlA55iR35E6M2ipaEloZEdNR:qUEXpDqatYNOMkEneZKf
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2