e801befe886e6c0d8b0efa59a04e07e86d6f99132360e1e5d54151c3b5fcb420 | Triage

Sharing

General

Target

e801befe886e6c0d8b0efa59a04e07e86d6f99132360e1e5d54151c3b5fcb420
Size

1.7MB
Sample

221125-ppmaqage54
MD5

f19f9579b42168080761e723996b5e98
SHA1

921c97bcade3afe6955514073a69485dadfe774a
SHA256

e801befe886e6c0d8b0efa59a04e07e86d6f99132360e1e5d54151c3b5fcb420
SHA512

9d8d18a279832b79b45dcffb8f733f820ba114d2a523054f222951e2c35e85a091e7cc936affec23358e87d4896f0096f711c0e3ce13df6b209de289e69bc072
SSDEEP

49152:Kyx4ql56OSVbug9D3+IsL9OI7xWHQ3aw2uwzUBTRv:KyxDl56OKyg9aIk9JtKYZ

Score

7^/10

Malware Config

Targets

- Target
  
  e801befe886e6c0d8b0efa59a04e07e86d6f99132360e1e5d54151c3b5fcb420
- Size
  
  1.7MB
- MD5
  
  f19f9579b42168080761e723996b5e98
- SHA1
  
  921c97bcade3afe6955514073a69485dadfe774a
- SHA256
  
  e801befe886e6c0d8b0efa59a04e07e86d6f99132360e1e5d54151c3b5fcb420
- SHA512
  
  9d8d18a279832b79b45dcffb8f733f820ba114d2a523054f222951e2c35e85a091e7cc936affec23358e87d4896f0096f711c0e3ce13df6b209de289e69bc072
- SSDEEP
  
  49152:Kyx4ql56OSVbug9D3+IsL9OI7xWHQ3aw2uwzUBTRv:KyxDl56OKyg9aIk9JtKYZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1