a77f838b150c89c4ffefc20ed426aa7d841217b539bcbb7ee6839a6203ada1cb | Triage

Sharing

General

Target

a77f838b150c89c4ffefc20ed426aa7d841217b539bcbb7ee6839a6203ada1cb
Size

143KB
Sample

221126-1rxd9agc88
MD5

65bc032da592e4972fdbf98ca84e5ad2
SHA1

8a372c152a3899e13ff1b343123579a568f7d81b
SHA256

a77f838b150c89c4ffefc20ed426aa7d841217b539bcbb7ee6839a6203ada1cb
SHA512

e3d0e2de990816bbdc1d19985ab3607cf81156e84dff4613a1c2d6559e622d75d5636155521662c029b30393217da12bcc84a324b7fd12384544d29a2c9fe9bc
SSDEEP

3072:aKDAfCDSmJnBR7Lyn+m53WVuxsIOLmIxPQtJvb:aRXng03OLVIzT

Score

8^/10

Malware Config

Targets

- Target
  
  a77f838b150c89c4ffefc20ed426aa7d841217b539bcbb7ee6839a6203ada1cb
- Size
  
  143KB
- MD5
  
  65bc032da592e4972fdbf98ca84e5ad2
- SHA1
  
  8a372c152a3899e13ff1b343123579a568f7d81b
- SHA256
  
  a77f838b150c89c4ffefc20ed426aa7d841217b539bcbb7ee6839a6203ada1cb
- SHA512
  
  e3d0e2de990816bbdc1d19985ab3607cf81156e84dff4613a1c2d6559e622d75d5636155521662c029b30393217da12bcc84a324b7fd12384544d29a2c9fe9bc
- SSDEEP
  
  3072:aKDAfCDSmJnBR7Lyn+m53WVuxsIOLmIxPQtJvb:aRXng03OLVIzT
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2