d41fc40212e1f3439b0a8237ff7fdc4ef18692834c892da1d059b9eb2210b711 | Triage

Sharing

General

Target

d41fc40212e1f3439b0a8237ff7fdc4ef18692834c892da1d059b9eb2210b711
Size

1.7MB
Sample

221123-pkh3habe94
MD5

e79be00e6684247db2bd6ab49cba1e3f
SHA1

96c4f2eeee0cfecc8658d3e17dd607081eb2b101
SHA256

d41fc40212e1f3439b0a8237ff7fdc4ef18692834c892da1d059b9eb2210b711
SHA512

acdb105f281b515dcae0b69d35c60737761a59025097167d9800f9cdd2819625a725ef5589a3527c6985e44298d88c4d3675bc0deb0e6c105856dddc8cccac35
SSDEEP

49152:KyNvFE3c+0dR3rI+MnFZFVkpRR5fhFzu+9Uq+C:KyNvFE3c+0dR3rkH3M5fhRu+Gq+C

Score

7^/10

Malware Config

Targets

- Target
  
  d41fc40212e1f3439b0a8237ff7fdc4ef18692834c892da1d059b9eb2210b711
- Size
  
  1.7MB
- MD5
  
  e79be00e6684247db2bd6ab49cba1e3f
- SHA1
  
  96c4f2eeee0cfecc8658d3e17dd607081eb2b101
- SHA256
  
  d41fc40212e1f3439b0a8237ff7fdc4ef18692834c892da1d059b9eb2210b711
- SHA512
  
  acdb105f281b515dcae0b69d35c60737761a59025097167d9800f9cdd2819625a725ef5589a3527c6985e44298d88c4d3675bc0deb0e6c105856dddc8cccac35
- SSDEEP
  
  49152:KyNvFE3c+0dR3rI+MnFZFVkpRR5fhFzu+9Uq+C:KyNvFE3c+0dR3rkH3M5fhRu+Gq+C
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1