ee6d3fe08280b328facbbf90a8ceb1e99916dbefbb5fdec88628fe90906cfc8f | Triage

Sharing

General

Target

ee6d3fe08280b328facbbf90a8ceb1e99916dbefbb5fdec88628fe90906cfc8f
Size

1.5MB
Sample

221125-mjqd3saf26
MD5

6656f0751c02dd0b4deefe48c42e03dd
SHA1

fbefd401b36d483186e3ed2c688f327fe27078e2
SHA256

ee6d3fe08280b328facbbf90a8ceb1e99916dbefbb5fdec88628fe90906cfc8f
SHA512

09284b728877d4a496ba64f3719999ff017127c56c3ad656e1b72a7d42fb72d7c9f74c75725521cdd296e24a9055f5e4a570db99ab922cded2cf522ef124911b
SSDEEP

24576:npa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGg:QcZC35VcOcmDcc6CdG

Score

7^/10

Malware Config

Targets

- Target
  
  ee6d3fe08280b328facbbf90a8ceb1e99916dbefbb5fdec88628fe90906cfc8f
- Size
  
  1.5MB
- MD5
  
  6656f0751c02dd0b4deefe48c42e03dd
- SHA1
  
  fbefd401b36d483186e3ed2c688f327fe27078e2
- SHA256
  
  ee6d3fe08280b328facbbf90a8ceb1e99916dbefbb5fdec88628fe90906cfc8f
- SHA512
  
  09284b728877d4a496ba64f3719999ff017127c56c3ad656e1b72a7d42fb72d7c9f74c75725521cdd296e24a9055f5e4a570db99ab922cded2cf522ef124911b
- SSDEEP
  
  24576:npa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGg:QcZC35VcOcmDcc6CdG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2