8ede2e46a4d55f292976ea13be4dee5ad2805b2d9e6d0553c5e4e70667c8d2c6 | Triage

Sharing

General

Target

8ede2e46a4d55f292976ea13be4dee5ad2805b2d9e6d0553c5e4e70667c8d2c6
Size

28KB
Sample

221121-vrnjfsaf73
MD5

3786a47d907df1ba69702716d890a720
SHA1

10f9810684580c0e7de9c6517d645fae7312b88c
SHA256

8ede2e46a4d55f292976ea13be4dee5ad2805b2d9e6d0553c5e4e70667c8d2c6
SHA512

6978528fb997ba37379e37018b1001dd7b374eaa783c593fa02c25e043a1218b9bdef78e97a5567a9fc7d136f1077a141705ce296c04544763d88c3bb346b623
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSrv:X6QFElP6n+gJQMOtEvwDpjBcS7

Score

8^/10

Malware Config

Targets

- Target
  
  8ede2e46a4d55f292976ea13be4dee5ad2805b2d9e6d0553c5e4e70667c8d2c6
- Size
  
  28KB
- MD5
  
  3786a47d907df1ba69702716d890a720
- SHA1
  
  10f9810684580c0e7de9c6517d645fae7312b88c
- SHA256
  
  8ede2e46a4d55f292976ea13be4dee5ad2805b2d9e6d0553c5e4e70667c8d2c6
- SHA512
  
  6978528fb997ba37379e37018b1001dd7b374eaa783c593fa02c25e043a1218b9bdef78e97a5567a9fc7d136f1077a141705ce296c04544763d88c3bb346b623
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSrv:X6QFElP6n+gJQMOtEvwDpjBcS7
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2