ab67764e59eaef78173f7509d4fc58576b546bb8982b042380e92fbf7fae4de1 | Triage

Sharing

General

Target

ab67764e59eaef78173f7509d4fc58576b546bb8982b042380e92fbf7fae4de1
Size

29KB
Sample

221107-ezb8dsaggj
MD5

06877edd1d8aa07c4730e1b90b41fc2c
SHA1

0d9b97f28b5a64267f353c51c9559ffd786b8e2a
SHA256

ab67764e59eaef78173f7509d4fc58576b546bb8982b042380e92fbf7fae4de1
SHA512

065d1c2c58201131e8a6a7e210113a74edaa7f3fd98973744d3b7467bd3c053eed77936b3ff3bbdfcc1b5fba6d6d4221aa6e827bac05673a8c7fe6259bf45254
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajFJwXG:X6QFElP6n+gJQMOtEvwDpjBcLSG

Score

8^/10

Malware Config

Targets

- Target
  
  ab67764e59eaef78173f7509d4fc58576b546bb8982b042380e92fbf7fae4de1
- Size
  
  29KB
- MD5
  
  06877edd1d8aa07c4730e1b90b41fc2c
- SHA1
  
  0d9b97f28b5a64267f353c51c9559ffd786b8e2a
- SHA256
  
  ab67764e59eaef78173f7509d4fc58576b546bb8982b042380e92fbf7fae4de1
- SHA512
  
  065d1c2c58201131e8a6a7e210113a74edaa7f3fd98973744d3b7467bd3c053eed77936b3ff3bbdfcc1b5fba6d6d4221aa6e827bac05673a8c7fe6259bf45254
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajFJwXG:X6QFElP6n+gJQMOtEvwDpjBcLSG
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2