f411b820419a1f8ebd2df6318c6bd87db1235e65fe2bca60d7daa14ad98d39e3 | Triage

Sharing

General

Target

f411b820419a1f8ebd2df6318c6bd87db1235e65fe2bca60d7daa14ad98d39e3
Size

1.5MB
Sample

221106-valcrsbhd5
MD5

1c0c01fbf02be6db7d7eddce53321845
SHA1

713438565c8b2f4f0eeeb82931c48fc7f7c72d20
SHA256

f411b820419a1f8ebd2df6318c6bd87db1235e65fe2bca60d7daa14ad98d39e3
SHA512

210f88b33556389096298723e935ac8f1438a703846d1b9cc0ccd1b8c7a7843dcf4bc7fdccc289f55d88501b93fb17db28f3255c7b0ce1987b693983add10965
SSDEEP

49152:VJ4odn6AYrCQvUTlPi7Fq5BBKfsoyL0UcpoM:VJ4cnjYrRUo7FiBBKkyMM

Score

7^/10

Malware Config

Targets

- Target
  
  f411b820419a1f8ebd2df6318c6bd87db1235e65fe2bca60d7daa14ad98d39e3
- Size
  
  1.5MB
- MD5
  
  1c0c01fbf02be6db7d7eddce53321845
- SHA1
  
  713438565c8b2f4f0eeeb82931c48fc7f7c72d20
- SHA256
  
  f411b820419a1f8ebd2df6318c6bd87db1235e65fe2bca60d7daa14ad98d39e3
- SHA512
  
  210f88b33556389096298723e935ac8f1438a703846d1b9cc0ccd1b8c7a7843dcf4bc7fdccc289f55d88501b93fb17db28f3255c7b0ce1987b693983add10965
- SSDEEP
  
  49152:VJ4odn6AYrCQvUTlPi7Fq5BBKfsoyL0UcpoM:VJ4cnjYrRUo7FiBBKkyMM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1