d4fbdbda54af055727de756e7bec34b4e9448e21e44768a35e53e1c0fe7b64fc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d4fbdbda54af055727de756e7bec34b4e9448e21e44768a35e53e1c0fe7b64fc
Size

19KB
Sample

221019-sx5zksdgh2
MD5

a23e2ce6fda659652b9ff6815b921640
SHA1

9937c6c3b62e0703790fd3eed7e23bb57179be36
SHA256

d4fbdbda54af055727de756e7bec34b4e9448e21e44768a35e53e1c0fe7b64fc
SHA512

d9daf91b5f3d59a516e6dd1f0fa319a4539af54d115ef568f50699e963e3e1ff3a0e277015f94f12f154afbaacfb7196277079ba054cd2486f758b88cb4111c4
SSDEEP

192:+uezszppVZ745F2N0RL4iwO09yrjdTJT5WxyHgwl/FTg/K5v6:+My+N0RM2jdt2yHgti5v6

Score

8^/10

Malware Config

Targets

- Target
  
  d4fbdbda54af055727de756e7bec34b4e9448e21e44768a35e53e1c0fe7b64fc
- Size
  
  19KB
- MD5
  
  a23e2ce6fda659652b9ff6815b921640
- SHA1
  
  9937c6c3b62e0703790fd3eed7e23bb57179be36
- SHA256
  
  d4fbdbda54af055727de756e7bec34b4e9448e21e44768a35e53e1c0fe7b64fc
- SHA512
  
  d9daf91b5f3d59a516e6dd1f0fa319a4539af54d115ef568f50699e963e3e1ff3a0e277015f94f12f154afbaacfb7196277079ba054cd2486f758b88cb4111c4
- SSDEEP
  
  192:+uezszppVZ745F2N0RL4iwO09yrjdTJT5WxyHgwl/FTg/K5v6:+My+N0RM2jdt2yHgti5v6
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2