00e30916d2a3533ca95c820ad9790d934225335cd5ad7507f0556993fc33a477 | Triage

Sharing

General

Target

00e30916d2a3533ca95c820ad9790d934225335cd5ad7507f0556993fc33a477
Size

29KB
Sample

221121-vrp3aaeb5w
MD5

101c998f3b7f9c75c493062bff6999a0
SHA1

eb57836ee2f2af59e6e97250e3c688840b7aed8e
SHA256

00e30916d2a3533ca95c820ad9790d934225335cd5ad7507f0556993fc33a477
SHA512

c6b37244a9ec10274c5ba4541a4c48cb26f5edc3cf2677b9da1592ce3eb0aa610a88bf801bbeaa3a506dcea6b84c6e8590627d0d042fd74cc4649e8d56bdef62
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSK1:X6QFElP6n+gJQMOtEvwDpjBcSK1

Score

8^/10

Malware Config

Targets

- Target
  
  00e30916d2a3533ca95c820ad9790d934225335cd5ad7507f0556993fc33a477
- Size
  
  29KB
- MD5
  
  101c998f3b7f9c75c493062bff6999a0
- SHA1
  
  eb57836ee2f2af59e6e97250e3c688840b7aed8e
- SHA256
  
  00e30916d2a3533ca95c820ad9790d934225335cd5ad7507f0556993fc33a477
- SHA512
  
  c6b37244a9ec10274c5ba4541a4c48cb26f5edc3cf2677b9da1592ce3eb0aa610a88bf801bbeaa3a506dcea6b84c6e8590627d0d042fd74cc4649e8d56bdef62
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVajSK1:X6QFElP6n+gJQMOtEvwDpjBcSK1
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2