e2b132748d7069b3baab328e55ec8b2204137181d01048629296288434dac046 | Triage

Sharing

General

Target

e2b132748d7069b3baab328e55ec8b2204137181d01048629296288434dac046
Size

1.7MB
Sample

221127-wes4vabc5v
MD5

b2c3e2795d744b1356d933277d0f7654
SHA1

487fff4b28db30339f310c3b32af2bafd8b22fe7
SHA256

e2b132748d7069b3baab328e55ec8b2204137181d01048629296288434dac046
SHA512

1af71e38cada6f9209a49dcf56f08fbc38f9f996339dadbe83481d709a4c732d787e0b3b2e2dd345c00ced8e5531ae5a4fc372c4bbb5163f986c0cb04be2b356
SSDEEP

49152:zun8TgRH1jCmdobZ7A6cPmw/Nljql1DzXNhjFHoBp0:zK8TzZ1cuw//jkDJhBIr0

Score

7^/10

Malware Config

Targets

- Target
  
  e2b132748d7069b3baab328e55ec8b2204137181d01048629296288434dac046
- Size
  
  1.7MB
- MD5
  
  b2c3e2795d744b1356d933277d0f7654
- SHA1
  
  487fff4b28db30339f310c3b32af2bafd8b22fe7
- SHA256
  
  e2b132748d7069b3baab328e55ec8b2204137181d01048629296288434dac046
- SHA512
  
  1af71e38cada6f9209a49dcf56f08fbc38f9f996339dadbe83481d709a4c732d787e0b3b2e2dd345c00ced8e5531ae5a4fc372c4bbb5163f986c0cb04be2b356
- SSDEEP
  
  49152:zun8TgRH1jCmdobZ7A6cPmw/Nljql1DzXNhjFHoBp0:zK8TzZ1cuw//jkDJhBIr0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1