e292bc0a80cc7dc66ff3116336a17bb0d76c55ea91a6c9fed81debdec48c910c | Triage

Sharing

General

Target

e292bc0a80cc7dc66ff3116336a17bb0d76c55ea91a6c9fed81debdec48c910c
Size

10.5MB
Sample

221123-p399psch82
MD5

19153a23d8bf242e0399ef05f352f04f
SHA1

20c06c0a0b98a45089ad288f354cfc4fc91dac41
SHA256

e292bc0a80cc7dc66ff3116336a17bb0d76c55ea91a6c9fed81debdec48c910c
SHA512

aae7ea8818b7cf4b2a5bd182a3cc5544b881e08bcbc5e731534e2eb8b70a765ddaf0855558fcdcd47dbb85c602331782ec8366359edd737558c3a94c64f55178
SSDEEP

196608:ScCuika88MiXKKP1pMjDo89ub0bVe7FIetA86PURwUdyvhfSfvg9DBUky:ECDM7tsU2U3vIu

Score

8^/10

Malware Config

Targets

- Target
  
  e292bc0a80cc7dc66ff3116336a17bb0d76c55ea91a6c9fed81debdec48c910c
- Size
  
  10.5MB
- MD5
  
  19153a23d8bf242e0399ef05f352f04f
- SHA1
  
  20c06c0a0b98a45089ad288f354cfc4fc91dac41
- SHA256
  
  e292bc0a80cc7dc66ff3116336a17bb0d76c55ea91a6c9fed81debdec48c910c
- SHA512
  
  aae7ea8818b7cf4b2a5bd182a3cc5544b881e08bcbc5e731534e2eb8b70a765ddaf0855558fcdcd47dbb85c602331782ec8366359edd737558c3a94c64f55178
- SSDEEP
  
  196608:ScCuika88MiXKKP1pMjDo89ub0bVe7FIetA86PURwUdyvhfSfvg9DBUky:ECDM7tsU2U3vIu
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2