af3ca376589dab19ace552686b1bdb65badd901e19074fda3cdf1ffd86c92ef2 | Triage

Sharing

General

Target

af3ca376589dab19ace552686b1bdb65badd901e19074fda3cdf1ffd86c92ef2
Size

1.6MB
Sample

221123-k3ncqadd8x
MD5

49b109aa33b67e7575502167cafc3ee4
SHA1

95b8cc269544c16a3cddf7c3c2c02faa2ab2270e
SHA256

af3ca376589dab19ace552686b1bdb65badd901e19074fda3cdf1ffd86c92ef2
SHA512

172f7320d97ccc8e9777dc053c4896bedb913de608541eff74423ea64c7d287675baf2a62c97e997729906171cfbb23e1d804fe5e56d8bd174366f3c82a6a562
SSDEEP

24576:b062cSEk8zNlLBtW/BXgJWNnh5F9UPdxVi3wJZiTPEYZe6RWJLODQtcHNSuxd3f+:A6PaYWJXzNnhDisAJZiwYZvQpu/vz/i

Score

7^/10

Malware Config

Targets

- Target
  
  af3ca376589dab19ace552686b1bdb65badd901e19074fda3cdf1ffd86c92ef2
- Size
  
  1.6MB
- MD5
  
  49b109aa33b67e7575502167cafc3ee4
- SHA1
  
  95b8cc269544c16a3cddf7c3c2c02faa2ab2270e
- SHA256
  
  af3ca376589dab19ace552686b1bdb65badd901e19074fda3cdf1ffd86c92ef2
- SHA512
  
  172f7320d97ccc8e9777dc053c4896bedb913de608541eff74423ea64c7d287675baf2a62c97e997729906171cfbb23e1d804fe5e56d8bd174366f3c82a6a562
- SSDEEP
  
  24576:b062cSEk8zNlLBtW/BXgJWNnh5F9UPdxVi3wJZiTPEYZe6RWJLODQtcHNSuxd3f+:A6PaYWJXzNnhDisAJZiwYZvQpu/vz/i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1