abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444 | Triage

Sharing

General

Target

abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
Size

284KB
Sample

221124-e6r77acf2z
MD5

19a4152087180c2263e8d36c1f0d280a
SHA1

121fa1586c5198717e4fd4f57759060a794c0753
SHA256

abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
SHA512

229b14f5932f6a6629b2754f6f6176621db2b2de7c551d3f551b25a2b3952d92dfc20d0e154719d768970ee139fc601705da487deb61dfa06671831cd77decd2
SSDEEP

6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSs6:pGaf05a7XikbkgaISKVsVeR6

Score

8^/10

Malware Config

Targets

- Target
  
  abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
- Size
  
  284KB
- MD5
  
  19a4152087180c2263e8d36c1f0d280a
- SHA1
  
  121fa1586c5198717e4fd4f57759060a794c0753
- SHA256
  
  abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
- SHA512
  
  229b14f5932f6a6629b2754f6f6176621db2b2de7c551d3f551b25a2b3952d92dfc20d0e154719d768970ee139fc601705da487deb61dfa06671831cd77decd2
- SSDEEP
  
  6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSs6:pGaf05a7XikbkgaISKVsVeR6
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2