88bdbc19a3aed39c2cc40ad3a9d221f6fe7a352e35238c8a0482fed0274cea9f | Triage

Sharing

General

Target

88bdbc19a3aed39c2cc40ad3a9d221f6fe7a352e35238c8a0482fed0274cea9f
Size

1.8MB
Sample

221102-yaef1adgfm
MD5

e4545acbeb2b78e0e6b17a2310dc560d
SHA1

c9fd7e6dbfe714c7ff8ed2e942c15f9897430438
SHA256

88bdbc19a3aed39c2cc40ad3a9d221f6fe7a352e35238c8a0482fed0274cea9f
SHA512

ad6ed403519c260bb3d4f57619a3ccc4daaef5edc7fa0fc5df1894bd96fc331a15e7750477fbab74a489b3812be2c6e8886a93100af39eb60fa00c656cae6e8c
SSDEEP

24576:Nny/f9u06OBab48vf2fII1//2+4ymcU1aoAIJIhXoOfJL6L1gX/KMWdb67ZDSH9c:8FqOMXM/2+4ygA53b1KKNSITnp

Score

8^/10

Malware Config

Targets

- Target
  
  88bdbc19a3aed39c2cc40ad3a9d221f6fe7a352e35238c8a0482fed0274cea9f
- Size
  
  1.8MB
- MD5
  
  e4545acbeb2b78e0e6b17a2310dc560d
- SHA1
  
  c9fd7e6dbfe714c7ff8ed2e942c15f9897430438
- SHA256
  
  88bdbc19a3aed39c2cc40ad3a9d221f6fe7a352e35238c8a0482fed0274cea9f
- SHA512
  
  ad6ed403519c260bb3d4f57619a3ccc4daaef5edc7fa0fc5df1894bd96fc331a15e7750477fbab74a489b3812be2c6e8886a93100af39eb60fa00c656cae6e8c
- SSDEEP
  
  24576:Nny/f9u06OBab48vf2fII1//2+4ymcU1aoAIJIhXoOfJL6L1gX/KMWdb67ZDSH9c:8FqOMXM/2+4ygA53b1KKNSITnp
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2