9a2d5742991fc79e53ef4b3f4a31222b03fcc0bbc5c36282f33a5674138b1232 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9a2d5742991fc79e53ef4b3f4a31222b03fcc0bbc5c36282f33a5674138b1232
Size

999KB
Sample

221019-typ57afga8
MD5

91d63cb80a279c5f6288819ea80be670
SHA1

648590a80c5452911f4821cce635cf4f174711b7
SHA256

9a2d5742991fc79e53ef4b3f4a31222b03fcc0bbc5c36282f33a5674138b1232
SHA512

6bb1d7f739d1024a9f59c0bce16c8976ffcd9bf1ca61b88199f3f3584eb7b5aaa472702cb6f323cc57aa5e40532e394daba86ac534bed7e20f578d66cff40132
SSDEEP

24576:it5vopzQLD3N1stvMOuNJyKec59ETRsNVPH6ydM1GvB/VG:u5vusLjsjuj1ETeBHh2IrG

Score

8^/10

Malware Config

Targets

- Target
  
  9a2d5742991fc79e53ef4b3f4a31222b03fcc0bbc5c36282f33a5674138b1232
- Size
  
  999KB
- MD5
  
  91d63cb80a279c5f6288819ea80be670
- SHA1
  
  648590a80c5452911f4821cce635cf4f174711b7
- SHA256
  
  9a2d5742991fc79e53ef4b3f4a31222b03fcc0bbc5c36282f33a5674138b1232
- SHA512
  
  6bb1d7f739d1024a9f59c0bce16c8976ffcd9bf1ca61b88199f3f3584eb7b5aaa472702cb6f323cc57aa5e40532e394daba86ac534bed7e20f578d66cff40132
- SSDEEP
  
  24576:it5vopzQLD3N1stvMOuNJyKec59ETRsNVPH6ydM1GvB/VG:u5vusLjsjuj1ETeBHh2IrG
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2