be246ae9cd37593cb0f20266eff5f5837d01f08595c106687dfe792fb921eb67 | Triage

Sharing

General

Target

be246ae9cd37593cb0f20266eff5f5837d01f08595c106687dfe792fb921eb67
Size

18KB
Sample

221019-rn2p5acadj
MD5

907fa99951e8b7ac8af26047ee6c4c70
SHA1

07446cad17e6a4b05ec9b9a765253528903a4f27
SHA256

be246ae9cd37593cb0f20266eff5f5837d01f08595c106687dfe792fb921eb67
SHA512

c089d4363e185446a5e1a211de3b8d869566f680c678b894d69fe3520819cbf46f2555fe0dad5beaf97a79380eb854a5c0d99cbba1a2d9bee7862d2925ec91b1
SSDEEP

192:uOOLCPoOjkEhL8+mfRKB6X6uziXk0akSvu/oWC0qGtLZUvRE6v5aCpm38eHCRkle:uhLCP1R8XnzvuwT0pZwBeH7le

Score

8^/10

Malware Config

Targets

- Target
  
  be246ae9cd37593cb0f20266eff5f5837d01f08595c106687dfe792fb921eb67
- Size
  
  18KB
- MD5
  
  907fa99951e8b7ac8af26047ee6c4c70
- SHA1
  
  07446cad17e6a4b05ec9b9a765253528903a4f27
- SHA256
  
  be246ae9cd37593cb0f20266eff5f5837d01f08595c106687dfe792fb921eb67
- SHA512
  
  c089d4363e185446a5e1a211de3b8d869566f680c678b894d69fe3520819cbf46f2555fe0dad5beaf97a79380eb854a5c0d99cbba1a2d9bee7862d2925ec91b1
- SSDEEP
  
  192:uOOLCPoOjkEhL8+mfRKB6X6uziXk0akSvu/oWC0qGtLZUvRE6v5aCpm38eHCRkle:uhLCP1R8XnzvuwT0pZwBeH7le
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2