91213bd154f67eee2266b165dff747372b38aef4722a7324d0f05ab45f01f514 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

91213bd154f67eee2266b165dff747372b38aef4722a7324d0f05ab45f01f514
Size

41KB
Sample

221202-1y9yxscf4v
MD5

7f98778a29aeca6c46988b439c04d13d
SHA1

c7c53c14fa8a1704e2ad45260d19693c043cc8a8
SHA256

91213bd154f67eee2266b165dff747372b38aef4722a7324d0f05ab45f01f514
SHA512

747cccf992762146c20e767d6d473a974bc33518a1af16e107d99468e30d4e618770d7119dd702a1511d3165dd808723499748058bfe4f8a13a72302a095f4e6
SSDEEP

768:QGBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnuoNE/W5dRV8:fW1ZIZqI9opm6AIHIjzmUPNzd

Score

8^/10

Malware Config

Targets

- Target
  
  91213bd154f67eee2266b165dff747372b38aef4722a7324d0f05ab45f01f514
- Size
  
  41KB
- MD5
  
  7f98778a29aeca6c46988b439c04d13d
- SHA1
  
  c7c53c14fa8a1704e2ad45260d19693c043cc8a8
- SHA256
  
  91213bd154f67eee2266b165dff747372b38aef4722a7324d0f05ab45f01f514
- SHA512
  
  747cccf992762146c20e767d6d473a974bc33518a1af16e107d99468e30d4e618770d7119dd702a1511d3165dd808723499748058bfe4f8a13a72302a095f4e6
- SSDEEP
  
  768:QGBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnuoNE/W5dRV8:fW1ZIZqI9opm6AIHIjzmUPNzd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2