7b9c10f62232b4f3281b0363cd785fff73d2df2daaed2db4a15fec945f0495f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7b9c10f62232b4f3281b0363cd785fff73d2df2daaed2db4a15fec945f0495f3
Size

13KB
Sample

221106-ka38gaeban
MD5

3042ef3a51eb76c91beafb2df85db1f0
SHA1

04680aeaf25c6910ff32a2b2b0b4d1e694d02c6c
SHA256

7b9c10f62232b4f3281b0363cd785fff73d2df2daaed2db4a15fec945f0495f3
SHA512

aef8141e82acf8ae95288fba48d5007b89200ecf3e586b3abfb8c2e39806ff954a9a06e853b305f9eec34a3b87c33b39da7686bcf6c36d99384f603b28974e9c
SSDEEP

192:vLoUp8hdO7+6ZJzWFAKGlLCl1oynzcN16uCcbJrAAAAA4mv4UL23:vLoUqhdO7+eN6GWl1pcG4rAAAAAHZw

Score

8^/10

Malware Config

Targets

- Target
  
  7b9c10f62232b4f3281b0363cd785fff73d2df2daaed2db4a15fec945f0495f3
- Size
  
  13KB
- MD5
  
  3042ef3a51eb76c91beafb2df85db1f0
- SHA1
  
  04680aeaf25c6910ff32a2b2b0b4d1e694d02c6c
- SHA256
  
  7b9c10f62232b4f3281b0363cd785fff73d2df2daaed2db4a15fec945f0495f3
- SHA512
  
  aef8141e82acf8ae95288fba48d5007b89200ecf3e586b3abfb8c2e39806ff954a9a06e853b305f9eec34a3b87c33b39da7686bcf6c36d99384f603b28974e9c
- SSDEEP
  
  192:vLoUp8hdO7+6ZJzWFAKGlLCl1oynzcN16uCcbJrAAAAA4mv4UL23:vLoUqhdO7+eN6GWl1pcG4rAAAAAHZw
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2