23643a79d2522ed352cc593118e73a349f30fd42c21eb55c2979217f7d6fc320 | Triage

Sharing

General

Target

23643a79d2522ed352cc593118e73a349f30fd42c21eb55c2979217f7d6fc320
Size

1.7MB
Sample

221123-zyy1zshb7w
MD5

90bb791df80b2da1e66e89b470263166
SHA1

f3001e7c145061cb805aee50899bd26ec2012ffe
SHA256

23643a79d2522ed352cc593118e73a349f30fd42c21eb55c2979217f7d6fc320
SHA512

76fc6dfb08c520585c637e726f3c28584e5185b1ebdc719a01320c209dc678a3ac3d2b3aada900d9274221d6ba7f7269e57514a22b9fb1dfc57c02e4d221ee11
SSDEEP

49152:VLYgseYu63KVX10jlxG20ZCijNY25emwQ:VLYkY33KxyjlxG2Zp2gfQ

Score

7^/10

Malware Config

Targets

- Target
  
  23643a79d2522ed352cc593118e73a349f30fd42c21eb55c2979217f7d6fc320
- Size
  
  1.7MB
- MD5
  
  90bb791df80b2da1e66e89b470263166
- SHA1
  
  f3001e7c145061cb805aee50899bd26ec2012ffe
- SHA256
  
  23643a79d2522ed352cc593118e73a349f30fd42c21eb55c2979217f7d6fc320
- SHA512
  
  76fc6dfb08c520585c637e726f3c28584e5185b1ebdc719a01320c209dc678a3ac3d2b3aada900d9274221d6ba7f7269e57514a22b9fb1dfc57c02e4d221ee11
- SSDEEP
  
  49152:VLYgseYu63KVX10jlxG20ZCijNY25emwQ:VLYkY33KxyjlxG2Zp2gfQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1