1b414efea01fdd80730776b92fb1b31273d8f54e91d95b4dc257313d3bc95e33 | Triage

Sharing

General

Target

1b414efea01fdd80730776b92fb1b31273d8f54e91d95b4dc257313d3bc95e33
Size

72KB
Sample

221123-r8fcmadf5s
MD5

9b3f38389559fde7f6014c9480fc4b13
SHA1

f174a80e3dee279ef75b964c4f65889fa7729596
SHA256

1b414efea01fdd80730776b92fb1b31273d8f54e91d95b4dc257313d3bc95e33
SHA512

e9061ee8148894120494d7ccbb8c1cbdb9843262761cc94ccc0c5d448a0a0a43ed453eca4dc94e7f9fd061a12ec5e80bf4f70939b9f92bd126be59e6225f102f
SSDEEP

1536:odX4Yu9asSGXGF7zmr+rhJP9zuN0v72b3U:cuV5Wi0d6uv72I

Score

8^/10

Malware Config

Targets

- Target
  
  1b414efea01fdd80730776b92fb1b31273d8f54e91d95b4dc257313d3bc95e33
- Size
  
  72KB
- MD5
  
  9b3f38389559fde7f6014c9480fc4b13
- SHA1
  
  f174a80e3dee279ef75b964c4f65889fa7729596
- SHA256
  
  1b414efea01fdd80730776b92fb1b31273d8f54e91d95b4dc257313d3bc95e33
- SHA512
  
  e9061ee8148894120494d7ccbb8c1cbdb9843262761cc94ccc0c5d448a0a0a43ed453eca4dc94e7f9fd061a12ec5e80bf4f70939b9f92bd126be59e6225f102f
- SSDEEP
  
  1536:odX4Yu9asSGXGF7zmr+rhJP9zuN0v72b3U:cuV5Wi0d6uv72I
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2