133bff26cb2aa0bf4d27369e50b5837caf2f6e1973d98d78530a7500e206bd53 | Triage

Sharing

General

Target

133bff26cb2aa0bf4d27369e50b5837caf2f6e1973d98d78530a7500e206bd53
Size

6.7MB
Sample

221123-qwt5ksaa7x
MD5

91d9d139ce2d791b6686ae07128b51cb
SHA1

46210009701509a198a58bc0a5fa3bcd05c53eb1
SHA256

133bff26cb2aa0bf4d27369e50b5837caf2f6e1973d98d78530a7500e206bd53
SHA512

0488397ba99de52afbb80378589f7a0115006640b02ad7c9c26f73cdc30c72bf6d9f780b03d2a724d38a3a7ecb987d54ca1b4060f135cd61d6d3408d0a7a153f
SSDEEP

196608:fKrCZ3PfOoei6B8v791ZftQzI+HfaQ37WmjUTFJ+:fZpGg791p6U+/aQ377jUTFM

Score

8^/10

Malware Config

Targets

- Target
  
  133bff26cb2aa0bf4d27369e50b5837caf2f6e1973d98d78530a7500e206bd53
- Size
  
  6.7MB
- MD5
  
  91d9d139ce2d791b6686ae07128b51cb
- SHA1
  
  46210009701509a198a58bc0a5fa3bcd05c53eb1
- SHA256
  
  133bff26cb2aa0bf4d27369e50b5837caf2f6e1973d98d78530a7500e206bd53
- SHA512
  
  0488397ba99de52afbb80378589f7a0115006640b02ad7c9c26f73cdc30c72bf6d9f780b03d2a724d38a3a7ecb987d54ca1b4060f135cd61d6d3408d0a7a153f
- SSDEEP
  
  196608:fKrCZ3PfOoei6B8v791ZftQzI+HfaQ37WmjUTFJ+:fZpGg791p6U+/aQ377jUTFM
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2