f46ade4fe12048babf7950ffeca4678809629af3710e538918029b4f2a904aa7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ec63c25795c38d985510e81cce78252.exe
Size

2.0MB
Sample

221105-ydhylahdb4
MD5

9ec63c25795c38d985510e81cce78252
SHA1

46d59d088bbc617fc1cc4d364f28f754ae3f6338
SHA256

f46ade4fe12048babf7950ffeca4678809629af3710e538918029b4f2a904aa7
SHA512

9ea2e1ec031531785cfd1930ce8fe6f302218794358b23d2077c0bb042e6c65a9ac031f5fd94162d3017b764b8aa2281b5053c202bafcd9ddc0eba7e3c1a54cc
SSDEEP

49152:HYJthRHvTf38wdV7THvvF40zX3PzjYrCAn+Y:HYvh2iV7zvFnYrCA+Y

Score

7^/10

Malware Config

Targets

- Target
  
  9ec63c25795c38d985510e81cce78252.exe
- Size
  
  2.0MB
- MD5
  
  9ec63c25795c38d985510e81cce78252
- SHA1
  
  46d59d088bbc617fc1cc4d364f28f754ae3f6338
- SHA256
  
  f46ade4fe12048babf7950ffeca4678809629af3710e538918029b4f2a904aa7
- SHA512
  
  9ea2e1ec031531785cfd1930ce8fe6f302218794358b23d2077c0bb042e6c65a9ac031f5fd94162d3017b764b8aa2281b5053c202bafcd9ddc0eba7e3c1a54cc
- SSDEEP
  
  49152:HYJthRHvTf38wdV7THvvF40zX3PzjYrCAn+Y:HYvh2iV7zvFnYrCA+Y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2