c1e0b53dfeedd9bda17fb331feee5e001f650fa13d1304f4bf5fbc87b5611c50 | Triage

Sharing

General

Target

c1e0b53dfeedd9bda17fb331feee5e001f650fa13d1304f4bf5fbc87b5611c50
Size

146KB
Sample

221028-wvm8jahgf4
MD5

0cc00c7a3e291a5d7fa675836bc72467
SHA1

2626228708b77bd3de28c0d1677001c1f08ae04d
SHA256

c1e0b53dfeedd9bda17fb331feee5e001f650fa13d1304f4bf5fbc87b5611c50
SHA512

82b38a8f6e5bd68bc110893dca2da8d632c10b69b6efa79717dc29161f19ee2021591dbb9357fa2336fc950e6fe290c832754ea453026e64cff12d4a6b5b6c6e
SSDEEP

3072:b1dlKwgj23+Oz05YoNoz+YUFrdXuC72N4Mia9Ib2IUfAAW:b1dlZro5yU3yuMf6

Score

8^/10

Malware Config

Targets

- Target
  
  c1e0b53dfeedd9bda17fb331feee5e001f650fa13d1304f4bf5fbc87b5611c50
- Size
  
  146KB
- MD5
  
  0cc00c7a3e291a5d7fa675836bc72467
- SHA1
  
  2626228708b77bd3de28c0d1677001c1f08ae04d
- SHA256
  
  c1e0b53dfeedd9bda17fb331feee5e001f650fa13d1304f4bf5fbc87b5611c50
- SHA512
  
  82b38a8f6e5bd68bc110893dca2da8d632c10b69b6efa79717dc29161f19ee2021591dbb9357fa2336fc950e6fe290c832754ea453026e64cff12d4a6b5b6c6e
- SSDEEP
  
  3072:b1dlKwgj23+Oz05YoNoz+YUFrdXuC72N4Mia9Ib2IUfAAW:b1dlZro5yU3yuMf6
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2