b00ca094388d854e791c5c84dbaf21f3fe2178d0362254beed84785f3acf5309 | Triage

Sharing

General

Target

b00ca094388d854e791c5c84dbaf21f3fe2178d0362254beed84785f3acf5309
Size

1.9MB
Sample

221123-hwxlpsaa4y
MD5

cf416a30546f264aeb738ed26f537d76
SHA1

9b80f7ac8477eb2b067fee88bfb552175027f700
SHA256

b00ca094388d854e791c5c84dbaf21f3fe2178d0362254beed84785f3acf5309
SHA512

dbe799edf2a2d5f225589867f6233e789fe0be01c5f3841089aa3fe11d248917a27c450a70e675dde9a281098f261b1dbe453b7c9f44985677360b062dd52278
SSDEEP

49152:WgYndpFlHKwDpH1C0dlqDIZj06xRRtOmQ7iLBkIa:WDFlHKwDpH1C0nq6Jf+mzza

Score

7^/10

Malware Config

Targets

- Target
  
  b00ca094388d854e791c5c84dbaf21f3fe2178d0362254beed84785f3acf5309
- Size
  
  1.9MB
- MD5
  
  cf416a30546f264aeb738ed26f537d76
- SHA1
  
  9b80f7ac8477eb2b067fee88bfb552175027f700
- SHA256
  
  b00ca094388d854e791c5c84dbaf21f3fe2178d0362254beed84785f3acf5309
- SHA512
  
  dbe799edf2a2d5f225589867f6233e789fe0be01c5f3841089aa3fe11d248917a27c450a70e675dde9a281098f261b1dbe453b7c9f44985677360b062dd52278
- SSDEEP
  
  49152:WgYndpFlHKwDpH1C0dlqDIZj06xRRtOmQ7iLBkIa:WDFlHKwDpH1C0nq6Jf+mzza
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1