3d4bbf552902aaf1308c7a3f854e37958cd2634f6c310d3e8e7e93fb980c37f5 | Triage

Sharing

General

Target

3d4bbf552902aaf1308c7a3f854e37958cd2634f6c310d3e8e7e93fb980c37f5
Size

7.7MB
Sample

221123-rwc2qscf2z
MD5

05f15c198bbf2f847eb4700ebf832da7
SHA1

15a3676916039d810c7471a253850e4d52b891d2
SHA256

3d4bbf552902aaf1308c7a3f854e37958cd2634f6c310d3e8e7e93fb980c37f5
SHA512

7485a0173129309630d706bf289f3b3292e2725b44a5e52eacbbf6614f82460663d98d42cab5fba27613faa4132d1f3f689313a40a90ec499f8078a08322af3e
SSDEEP

196608:2cCuika88MiXKKP1YMjDo89ub0bVJ41aVPzXEx2QU98znTVn:o5DXUkX4nTt

Score

8^/10

Malware Config

Targets

- Target
  
  3d4bbf552902aaf1308c7a3f854e37958cd2634f6c310d3e8e7e93fb980c37f5
- Size
  
  7.7MB
- MD5
  
  05f15c198bbf2f847eb4700ebf832da7
- SHA1
  
  15a3676916039d810c7471a253850e4d52b891d2
- SHA256
  
  3d4bbf552902aaf1308c7a3f854e37958cd2634f6c310d3e8e7e93fb980c37f5
- SHA512
  
  7485a0173129309630d706bf289f3b3292e2725b44a5e52eacbbf6614f82460663d98d42cab5fba27613faa4132d1f3f689313a40a90ec499f8078a08322af3e
- SSDEEP
  
  196608:2cCuika88MiXKKP1YMjDo89ub0bVJ41aVPzXEx2QU98znTVn:o5DXUkX4nTt
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2