b8d75194e3f32b64de54d08a797357e8af90ed4512251599a2841b377bede218 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b8d75194e3f32b64de54d08a797357e8af90ed4512251599a2841b377bede218
Size

165KB
Sample

221129-rpxskaba9z
MD5

a8c967932228546a05749e87db6a4423
SHA1

036705bdd3b8945c6aeb4a3d05dae07317dc9b50
SHA256

b8d75194e3f32b64de54d08a797357e8af90ed4512251599a2841b377bede218
SHA512

ef0acf8d8723566816e3bb3ce79fa89f2f9da9a84c6cb9650f14004725786525a577bc58b59438fb76ccd70cc4ccff720a495b557162cd679da5a1f74405da14
SSDEEP

3072:b1dlKwgj23+Oz05YoNozmfXNMItuDEbgd1+Qf4a3N1o9ioe:b1dlZro5yoXmItuD/wQf4sN1V

Score

8^/10

Malware Config

Targets

- Target
  
  b8d75194e3f32b64de54d08a797357e8af90ed4512251599a2841b377bede218
- Size
  
  165KB
- MD5
  
  a8c967932228546a05749e87db6a4423
- SHA1
  
  036705bdd3b8945c6aeb4a3d05dae07317dc9b50
- SHA256
  
  b8d75194e3f32b64de54d08a797357e8af90ed4512251599a2841b377bede218
- SHA512
  
  ef0acf8d8723566816e3bb3ce79fa89f2f9da9a84c6cb9650f14004725786525a577bc58b59438fb76ccd70cc4ccff720a495b557162cd679da5a1f74405da14
- SSDEEP
  
  3072:b1dlKwgj23+Oz05YoNozmfXNMItuDEbgd1+Qf4a3N1o9ioe:b1dlZro5yoXmItuD/wQf4sN1V
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2