6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7 | Triage

Sharing

General

Target

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
Size

644KB
Sample

221106-ftzl6sdff5
MD5

21081c422b42907b32628ec887d39450
SHA1

715560155610087b25dcb4707a5b52256dbe5b74
SHA256

6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
SHA512

1d058539d71ae33fc32f7fa164457632e6ce24099dd42007824669308b810c1e39fd7201686f516071c9101a8e186f363bd42e83d54a6ea2b3fdb7ce2a95e3f2
SSDEEP

12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
- Size
  
  644KB
- MD5
  
  21081c422b42907b32628ec887d39450
- SHA1
  
  715560155610087b25dcb4707a5b52256dbe5b74
- SHA256
  
  6ff142316a8382b7e2d947697607b74fbc1576f937178d96407b420ea15fa3f7
- SHA512
  
  1d058539d71ae33fc32f7fa164457632e6ce24099dd42007824669308b810c1e39fd7201686f516071c9101a8e186f363bd42e83d54a6ea2b3fdb7ce2a95e3f2
- SSDEEP
  
  12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2