f4330ede106b5c29787d15767163a0f3dd751c3382204d2369efc71116cad46b | Triage

Sharing

General

Target

f4330ede106b5c29787d15767163a0f3dd751c3382204d2369efc71116cad46b
Size

20KB
Sample

221124-ejyfpaah8z
MD5

abeec6065e144c428718311610f6798e
SHA1

4da90dc9055034789f2c1747bc107188ada293ca
SHA256

f4330ede106b5c29787d15767163a0f3dd751c3382204d2369efc71116cad46b
SHA512

907a2e56cf8c1fe9c8a06855f5208744f3bc3509e24467eac2d4c4f5fbbab76fadbdbf383d670d1b89bc3771ccd6faafeb1c76722347672efedb07a6b9414e20
SSDEEP

384:SjIAaIbL6kbkxRIyel11RlPOBJrXXfif3Y97H9:Ss9IJAxRIy++rXXfq+9

Score

8^/10

Malware Config

Targets

- Target
  
  f4330ede106b5c29787d15767163a0f3dd751c3382204d2369efc71116cad46b
- Size
  
  20KB
- MD5
  
  abeec6065e144c428718311610f6798e
- SHA1
  
  4da90dc9055034789f2c1747bc107188ada293ca
- SHA256
  
  f4330ede106b5c29787d15767163a0f3dd751c3382204d2369efc71116cad46b
- SHA512
  
  907a2e56cf8c1fe9c8a06855f5208744f3bc3509e24467eac2d4c4f5fbbab76fadbdbf383d670d1b89bc3771ccd6faafeb1c76722347672efedb07a6b9414e20
- SSDEEP
  
  384:SjIAaIbL6kbkxRIyel11RlPOBJrXXfif3Y97H9:Ss9IJAxRIy++rXXfq+9
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2