c93944cc37ff769814a064e91147ad24bd937f7c282a70d5c9c2f458e0107e5a | Triage

Sharing

General

Target

c93944cc37ff769814a064e91147ad24bd937f7c282a70d5c9c2f458e0107e5a
Size

1.3MB
Sample

221201-r2be4aha73
MD5

b297dbde459e613a7ff0d7952f4c43bf
SHA1

1d0dd64eab8a34965b7ee8f2c41d35cf338a7fd9
SHA256

c93944cc37ff769814a064e91147ad24bd937f7c282a70d5c9c2f458e0107e5a
SHA512

6c836939cda97183b8881aa4cb5c6c50d6ea2c6d6a694d639734ae9f7dca8485637efaffcfe6f4d84cd57e0084d95828bca2f411155660fc1fd4c0f37dd73fe8
SSDEEP

24576:MIR2w1UPMY7o+MuddBxCAmCg1wTf7LxkKJDtJe+2sBjOMQFB8im:MIH1eFl2Z6C8tIPEg7m

Score

8^/10

Malware Config

Targets

- Target
  
  c93944cc37ff769814a064e91147ad24bd937f7c282a70d5c9c2f458e0107e5a
- Size
  
  1.3MB
- MD5
  
  b297dbde459e613a7ff0d7952f4c43bf
- SHA1
  
  1d0dd64eab8a34965b7ee8f2c41d35cf338a7fd9
- SHA256
  
  c93944cc37ff769814a064e91147ad24bd937f7c282a70d5c9c2f458e0107e5a
- SHA512
  
  6c836939cda97183b8881aa4cb5c6c50d6ea2c6d6a694d639734ae9f7dca8485637efaffcfe6f4d84cd57e0084d95828bca2f411155660fc1fd4c0f37dd73fe8
- SSDEEP
  
  24576:MIR2w1UPMY7o+MuddBxCAmCg1wTf7LxkKJDtJe+2sBjOMQFB8im:MIH1eFl2Z6C8tIPEg7m
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2