40eba0cd59939801bacfa65093668febd00477a6202947e7b4c50c2adc8a6e47 | Triage

Sharing

General

Target

40eba0cd59939801bacfa65093668febd00477a6202947e7b4c50c2adc8a6e47
Size

1.7MB
Sample

221123-zv6lnaha2w
MD5

cf99ac3ff913b21c8f7e309e7589485b
SHA1

97df8344531340b4bd416b2902cbe92660a45213
SHA256

40eba0cd59939801bacfa65093668febd00477a6202947e7b4c50c2adc8a6e47
SHA512

e6da24d61b805e344052c950fe08532cd7e9807bbc61da3978f1ab2e383a1e6cf5edd8d7742c0e1e743983f124a25022f4cd8fe9bf2bea0d4aa75d21edcef6bf
SSDEEP

24576:VLeTtjJF5HrKlXJPbQNHjEbMUajd0W0gwP3R4tn3yxgqLLk4y4ipdXBYvDaDBBZP:VLYgl2D7DGPhnxgWwD4ipbweP93wY

Score

7^/10

Malware Config

Targets

- Target
  
  40eba0cd59939801bacfa65093668febd00477a6202947e7b4c50c2adc8a6e47
- Size
  
  1.7MB
- MD5
  
  cf99ac3ff913b21c8f7e309e7589485b
- SHA1
  
  97df8344531340b4bd416b2902cbe92660a45213
- SHA256
  
  40eba0cd59939801bacfa65093668febd00477a6202947e7b4c50c2adc8a6e47
- SHA512
  
  e6da24d61b805e344052c950fe08532cd7e9807bbc61da3978f1ab2e383a1e6cf5edd8d7742c0e1e743983f124a25022f4cd8fe9bf2bea0d4aa75d21edcef6bf
- SSDEEP
  
  24576:VLeTtjJF5HrKlXJPbQNHjEbMUajd0W0gwP3R4tn3yxgqLLk4y4ipdXBYvDaDBBZP:VLYgl2D7DGPhnxgWwD4ipbweP93wY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1