c7d7392b94895034888a21d04c18068d0c4195b077fa7543caa3b6d0d141c9ab | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7d7392b94895034888a21d04c18068d0c4195b077fa7543caa3b6d0d141c9ab
Size

89KB
Sample

221201-pfv69sfd48
MD5

4011e0ab3f5d5d07eb53c191e5e2b607
SHA1

6e60ce31d97326d67968439e3c59c409dd5e0616
SHA256

c7d7392b94895034888a21d04c18068d0c4195b077fa7543caa3b6d0d141c9ab
SHA512

0a0e4a2f397ae8d66959f0e06ea67a3b3831169ae604ad81d2abb4dd26f8d4c558613e4c98e2dba3ca546cbe2ec6d8d2f50a87797328f94d75e5bff6ec9e5048
SSDEEP

1536:2DqgKcruHviaVcd4zscs6moy+l5r1IV8UVO1d4d6DouEjZRQ+b/Lu:eBCH+Pob5Il0dIJQ+b/S

Score

8^/10

Malware Config

Targets

- Target
  
  c7d7392b94895034888a21d04c18068d0c4195b077fa7543caa3b6d0d141c9ab
- Size
  
  89KB
- MD5
  
  4011e0ab3f5d5d07eb53c191e5e2b607
- SHA1
  
  6e60ce31d97326d67968439e3c59c409dd5e0616
- SHA256
  
  c7d7392b94895034888a21d04c18068d0c4195b077fa7543caa3b6d0d141c9ab
- SHA512
  
  0a0e4a2f397ae8d66959f0e06ea67a3b3831169ae604ad81d2abb4dd26f8d4c558613e4c98e2dba3ca546cbe2ec6d8d2f50a87797328f94d75e5bff6ec9e5048
- SSDEEP
  
  1536:2DqgKcruHviaVcd4zscs6moy+l5r1IV8UVO1d4d6DouEjZRQ+b/Lu:eBCH+Pob5Il0dIJQ+b/S
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2