4a700e067b6c40026570945931a1374f77ace2d3d458c7babb06466e108865be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a700e067b6c40026570945931a1374f77ace2d3d458c7babb06466e108865be
Size

1.7MB
Sample

221127-bxbbjaea6z
MD5

1fee128281f492697720782b610de433
SHA1

642537afb5a19e98b403a6b7181dbfd7b777bc6f
SHA256

4a700e067b6c40026570945931a1374f77ace2d3d458c7babb06466e108865be
SHA512

15678b28dd3e8f2ca23ed218dd680721b412d507c04be45eab57058a984d333dff8f8dcc894ece8865475892b3a838dad200e4d407fa1ed10e9ecd319ce3f7bb
SSDEEP

24576:wyay4oHJrBfJXAENIQuPcHl8qOdH6n4cwKIE5yHaDAdd3fQKSQ8KRmvvHIqpFMpT:TlBfJXAEGQuXeVMd3F3ZIvvHIUMpNSQ

Score

7^/10

Malware Config

Targets

- Target
  
  4a700e067b6c40026570945931a1374f77ace2d3d458c7babb06466e108865be
- Size
  
  1.7MB
- MD5
  
  1fee128281f492697720782b610de433
- SHA1
  
  642537afb5a19e98b403a6b7181dbfd7b777bc6f
- SHA256
  
  4a700e067b6c40026570945931a1374f77ace2d3d458c7babb06466e108865be
- SHA512
  
  15678b28dd3e8f2ca23ed218dd680721b412d507c04be45eab57058a984d333dff8f8dcc894ece8865475892b3a838dad200e4d407fa1ed10e9ecd319ce3f7bb
- SSDEEP
  
  24576:wyay4oHJrBfJXAENIQuPcHl8qOdH6n4cwKIE5yHaDAdd3fQKSQ8KRmvvHIqpFMpT:TlBfJXAEGQuXeVMd3F3ZIvvHIUMpNSQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1