27a4a03a1dbe6efccf3b0d735dbac82e451012f99f77d5ea1a126955e7a332d7 | Triage

Sharing

General

Target

27a4a03a1dbe6efccf3b0d735dbac82e451012f99f77d5ea1a126955e7a332d7
Size

2.6MB
Sample

221123-sp7s7sfa4z
MD5

4a832ed1585ffeb8508f1d8844a6b461
SHA1

3b74d193e25826495b9916ed426964ebd634d18c
SHA256

27a4a03a1dbe6efccf3b0d735dbac82e451012f99f77d5ea1a126955e7a332d7
SHA512

28e0a908cd43719c1d288dcc8306c171f53b9cb98dbb178b94e8a59db9318524e49cf8f166fd8ac6614a55e0cf195717a9b4727a96c1f2f1378771f677c7a98b
SSDEEP

49152:whN+Q6dtmoxrrat4vq3zvpZ3RN0Yc6XCZ6NmFIZeCgSrmaSBnC9CtZY2sOmO2XgK:INoXmw6Kszvz3gWRNFg0KxC9GZDmVXsw

Score

8^/10

Malware Config

Targets

- Target
  
  27a4a03a1dbe6efccf3b0d735dbac82e451012f99f77d5ea1a126955e7a332d7
- Size
  
  2.6MB
- MD5
  
  4a832ed1585ffeb8508f1d8844a6b461
- SHA1
  
  3b74d193e25826495b9916ed426964ebd634d18c
- SHA256
  
  27a4a03a1dbe6efccf3b0d735dbac82e451012f99f77d5ea1a126955e7a332d7
- SHA512
  
  28e0a908cd43719c1d288dcc8306c171f53b9cb98dbb178b94e8a59db9318524e49cf8f166fd8ac6614a55e0cf195717a9b4727a96c1f2f1378771f677c7a98b
- SSDEEP
  
  49152:whN+Q6dtmoxrrat4vq3zvpZ3RN0Yc6XCZ6NmFIZeCgSrmaSBnC9CtZY2sOmO2XgK:INoXmw6Kszvz3gWRNFg0KxC9GZDmVXsw
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1