fd22ce8e55e2acfe8bd0c6e843fafc517832f14c7f7b0f60a39fd0915515cbef | Triage

Sharing

General

Target

fd22ce8e55e2acfe8bd0c6e843fafc517832f14c7f7b0f60a39fd0915515cbef
Size

6.1MB
Sample

221123-ps8ccsfc8v
MD5

45f2719b56cfbad062f0a2b79ddb881b
SHA1

8567184d882041a2309fd4c9b8673dfee4d6f62d
SHA256

fd22ce8e55e2acfe8bd0c6e843fafc517832f14c7f7b0f60a39fd0915515cbef
SHA512

89e05ce5a1075ca34ce631e805e6998f1c43ba196602ee40623a07a516c83aa951440b3e62b2a53ebed21ec6baecd7ed96b96c9e0d5eaabdaa044e1db8942fd3
SSDEEP

196608:GcCuika88MiXKKP1DMjDo89ub0bVv6gKVdAEwcxCMqN9:4AD8gKjwcxCtN9

Score

8^/10

Malware Config

Targets

- Target
  
  fd22ce8e55e2acfe8bd0c6e843fafc517832f14c7f7b0f60a39fd0915515cbef
- Size
  
  6.1MB
- MD5
  
  45f2719b56cfbad062f0a2b79ddb881b
- SHA1
  
  8567184d882041a2309fd4c9b8673dfee4d6f62d
- SHA256
  
  fd22ce8e55e2acfe8bd0c6e843fafc517832f14c7f7b0f60a39fd0915515cbef
- SHA512
  
  89e05ce5a1075ca34ce631e805e6998f1c43ba196602ee40623a07a516c83aa951440b3e62b2a53ebed21ec6baecd7ed96b96c9e0d5eaabdaa044e1db8942fd3
- SSDEEP
  
  196608:GcCuika88MiXKKP1DMjDo89ub0bVv6gKVdAEwcxCMqN9:4AD8gKjwcxCtN9
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2