df2cea6cdabf16ea4f7262122886a5b5d1fde18e1893347c2a99b799912a1b1d | Triage

Sharing

General

Target

df2cea6cdabf16ea4f7262122886a5b5d1fde18e1893347c2a99b799912a1b1d
Size

1.1MB
Sample

221123-xvqjbsba9z
MD5

5839de7af7013d28a3375b91c813aff7
SHA1

38d57bd7e0012848df0ac41e13722f40f65addf9
SHA256

df2cea6cdabf16ea4f7262122886a5b5d1fde18e1893347c2a99b799912a1b1d
SHA512

cc16ed951ef27d9ecc51e40c4c48d7d0777faf4a420eb765db5fe665c41d855661089d13b43b74c3fb581eea6b616863f1b4fd44dc2c8a26b0e628020be27ee1
SSDEEP

24576:b1dlZo5fid29LAAPAEV5r8XKFsKyezFujabHFq9f+qsN9ohyAffZjk9GGvW:b1dlZofq29NADKyexqiFm+fSoAffZjkY

Score

8^/10

Malware Config

Targets

- Target
  
  df2cea6cdabf16ea4f7262122886a5b5d1fde18e1893347c2a99b799912a1b1d
- Size
  
  1.1MB
- MD5
  
  5839de7af7013d28a3375b91c813aff7
- SHA1
  
  38d57bd7e0012848df0ac41e13722f40f65addf9
- SHA256
  
  df2cea6cdabf16ea4f7262122886a5b5d1fde18e1893347c2a99b799912a1b1d
- SHA512
  
  cc16ed951ef27d9ecc51e40c4c48d7d0777faf4a420eb765db5fe665c41d855661089d13b43b74c3fb581eea6b616863f1b4fd44dc2c8a26b0e628020be27ee1
- SSDEEP
  
  24576:b1dlZo5fid29LAAPAEV5r8XKFsKyezFujabHFq9f+qsN9ohyAffZjk9GGvW:b1dlZofq29NADKyexqiFm+fSoAffZjkY
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2