44fc0a9324c9c078ed7392c3a67539e63be86f9fceee92d4729cbbe89fe1fb45 | Triage

Sharing

General

Target

44fc0a9324c9c078ed7392c3a67539e63be86f9fceee92d4729cbbe89fe1fb45
Size

20KB
Sample

221020-kvvrtseec9
MD5

70c6d9222e764876e795f911fed49c90
SHA1

5ab0c695fc97411a5448dab8dffa51b9b78a343f
SHA256

44fc0a9324c9c078ed7392c3a67539e63be86f9fceee92d4729cbbe89fe1fb45
SHA512

b67a5743f328d6e92a0b2f66f05a8b6df45f6b391889c7c02b7d2413bca25380fa509c2e4036c879a856be1746e3ed1bb29dd4ebfb6169b4718b13e8b5a425be
SSDEEP

192:0KRkIYzBtHHr5ns/U/hydSfNCMAOVKXzfm/++e1j+QkC4duC8ffg0WYmbUMxgg:0KRkN9H9ncmClvD+mPkChLWYg

Score

8^/10

Malware Config

Targets

- Target
  
  44fc0a9324c9c078ed7392c3a67539e63be86f9fceee92d4729cbbe89fe1fb45
- Size
  
  20KB
- MD5
  
  70c6d9222e764876e795f911fed49c90
- SHA1
  
  5ab0c695fc97411a5448dab8dffa51b9b78a343f
- SHA256
  
  44fc0a9324c9c078ed7392c3a67539e63be86f9fceee92d4729cbbe89fe1fb45
- SHA512
  
  b67a5743f328d6e92a0b2f66f05a8b6df45f6b391889c7c02b7d2413bca25380fa509c2e4036c879a856be1746e3ed1bb29dd4ebfb6169b4718b13e8b5a425be
- SSDEEP
  
  192:0KRkIYzBtHHr5ns/U/hydSfNCMAOVKXzfm/++e1j+QkC4duC8ffg0WYmbUMxgg:0KRkN9H9ncmClvD+mPkChLWYg
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2