8759d4336aba4c008db14f9190bc13af45304ccf5507d8305f09bd22ab004213 | Triage

Sharing

General

Target

8759d4336aba4c008db14f9190bc13af45304ccf5507d8305f09bd22ab004213
Size

203KB
Sample

221123-s75fssgc9y
MD5

add1972205939a6a4a50f6020faada08
SHA1

bea81e70bbf8707e8bdf0bb1bb042aa2ef6e7ab6
SHA256

8759d4336aba4c008db14f9190bc13af45304ccf5507d8305f09bd22ab004213
SHA512

05822d9b1b822469e1a530d7b9f6fc87d4c3f20d4129db57dd43ac0a9f647ea74c537408e8aa418dc1ad4723f17d02e722579b6710d79d377f67e50c8e2ea1fc
SSDEEP

3072:hwxVMhOC/dTDbq91+mno3t4QZQ3rtxB5vvexow+oAXLLVMRlSZZzzBL:hTfFDbRnOTrt57LNHzF

Score

8^/10

Malware Config

Targets

- Target
  
  8759d4336aba4c008db14f9190bc13af45304ccf5507d8305f09bd22ab004213
- Size
  
  203KB
- MD5
  
  add1972205939a6a4a50f6020faada08
- SHA1
  
  bea81e70bbf8707e8bdf0bb1bb042aa2ef6e7ab6
- SHA256
  
  8759d4336aba4c008db14f9190bc13af45304ccf5507d8305f09bd22ab004213
- SHA512
  
  05822d9b1b822469e1a530d7b9f6fc87d4c3f20d4129db57dd43ac0a9f647ea74c537408e8aa418dc1ad4723f17d02e722579b6710d79d377f67e50c8e2ea1fc
- SSDEEP
  
  3072:hwxVMhOC/dTDbq91+mno3t4QZQ3rtxB5vvexow+oAXLLVMRlSZZzzBL:hTfFDbRnOTrt57LNHzF
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2