abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444 | Triage

Sharing

General

Target

abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
Size

284KB
Sample

221124-e6r77acf2z
MD5

19a4152087180c2263e8d36c1f0d280a
SHA1

121fa1586c5198717e4fd4f57759060a794c0753
SHA256

abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
SHA512

229b14f5932f6a6629b2754f6f6176621db2b2de7c551d3f551b25a2b3952d92dfc20d0e154719d768970ee139fc601705da487deb61dfa06671831cd77decd2
SSDEEP

6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSs6:pGaf05a7XikbkgaISKVsVeR6

Score

8^/10

Malware Config

Targets

- Target
  
  abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
- Size
  
  284KB
- MD5
  
  19a4152087180c2263e8d36c1f0d280a
- SHA1
  
  121fa1586c5198717e4fd4f57759060a794c0753
- SHA256
  
  abde3f9023fba98a558974fb3e2a3b5bcc644d88b6ebad2a5b958539a7d91444
- SHA512
  
  229b14f5932f6a6629b2754f6f6176621db2b2de7c551d3f551b25a2b3952d92dfc20d0e154719d768970ee139fc601705da487deb61dfa06671831cd77decd2
- SSDEEP
  
  6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSs6:pGaf05a7XikbkgaISKVsVeR6
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2