ebee57d2d44a34a260f1139bd23333826ff2bf64f06fd2a3fec14b6f13482031 | Triage

Sharing

General

Target

ebee57d2d44a34a260f1139bd23333826ff2bf64f06fd2a3fec14b6f13482031
Size

958KB
Sample

221123-sz1gwafg3z
MD5

34bd8d6661a32f94b523168f028430e7
SHA1

df21a7f462bde792057e57ca2f7e5edf0715034d
SHA256

ebee57d2d44a34a260f1139bd23333826ff2bf64f06fd2a3fec14b6f13482031
SHA512

7469cdc6b524651b8bd0f923ecb525263e4509761aee8b0949354a994b72b0cf2e3137a58742f2b6ff249a3b9aeae9590c4ae9fa7c0dc9c2c2142121f2819eb0
SSDEEP

24576:S0WQ7EIHdcoZrEb5HN8kYeH0GRGx6KdVosUz75ss92IodM:4uEKZrEbP8+Gx6yJL36

Score

8^/10

Malware Config

Targets

- Target
  
  ebee57d2d44a34a260f1139bd23333826ff2bf64f06fd2a3fec14b6f13482031
- Size
  
  958KB
- MD5
  
  34bd8d6661a32f94b523168f028430e7
- SHA1
  
  df21a7f462bde792057e57ca2f7e5edf0715034d
- SHA256
  
  ebee57d2d44a34a260f1139bd23333826ff2bf64f06fd2a3fec14b6f13482031
- SHA512
  
  7469cdc6b524651b8bd0f923ecb525263e4509761aee8b0949354a994b72b0cf2e3137a58742f2b6ff249a3b9aeae9590c4ae9fa7c0dc9c2c2142121f2819eb0
- SSDEEP
  
  24576:S0WQ7EIHdcoZrEb5HN8kYeH0GRGx6KdVosUz75ss92IodM:4uEKZrEbP8+Gx6yJL36
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2