88273c1e64e138eb104caf1c28f0e5c0f718c3bb00f191a91b3544fdf0f91223 | Triage

Sharing

General

Target

88273c1e64e138eb104caf1c28f0e5c0f718c3bb00f191a91b3544fdf0f91223
Size

116KB
Sample

221124-eyk4xaca5v
MD5

eb66549b348dbeeee5c887e8bd70d25f
SHA1

d486d3ecf7b735e0e2807dd4dc4f4a38bf78f6a9
SHA256

88273c1e64e138eb104caf1c28f0e5c0f718c3bb00f191a91b3544fdf0f91223
SHA512

30452a2caeb9e11e5c6ef34d91005d1c17ba589b6279fd8ad03e0c51eda5431a6991c23a1c777b620e60bc39997a69b51ee2a8d8e7b8f372b938b229af39eaaf
SSDEEP

3072:SEruu/ZRHSn0gl5ITg/hUm5AmQYAF8ZJJZXMCcx:bbcrl5IsXC8rJV

Score

8^/10

Malware Config

Targets

- Target
  
  88273c1e64e138eb104caf1c28f0e5c0f718c3bb00f191a91b3544fdf0f91223
- Size
  
  116KB
- MD5
  
  eb66549b348dbeeee5c887e8bd70d25f
- SHA1
  
  d486d3ecf7b735e0e2807dd4dc4f4a38bf78f6a9
- SHA256
  
  88273c1e64e138eb104caf1c28f0e5c0f718c3bb00f191a91b3544fdf0f91223
- SHA512
  
  30452a2caeb9e11e5c6ef34d91005d1c17ba589b6279fd8ad03e0c51eda5431a6991c23a1c777b620e60bc39997a69b51ee2a8d8e7b8f372b938b229af39eaaf
- SSDEEP
  
  3072:SEruu/ZRHSn0gl5ITg/hUm5AmQYAF8ZJJZXMCcx:bbcrl5IsXC8rJV
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2