2398cb5d966b6b35d12adc2d6945aada01143aa6c24a27c5247dfd950ee78457 | Triage

Sharing

General

Target

2398cb5d966b6b35d12adc2d6945aada01143aa6c24a27c5247dfd950ee78457
Size

36KB
Sample

221202-axehhsah9y
MD5

751e66b7f311b58f741ba4b89b0f1b4e
SHA1

862e15262ee72aaed95b9e92617be046583e4653
SHA256

2398cb5d966b6b35d12adc2d6945aada01143aa6c24a27c5247dfd950ee78457
SHA512

4a203367453d470caadaefc8568fade370fdf60d6dbd64e85a2702e3ae0f5c03044d45936d310eba7e1697936e9e253d0f12a97f4ab39dee19694efe31887d88
SSDEEP

768:NqQoj/dSzNVQ1mDNJWbKEdBMQXQ3Cn4eQQDrcwxj:MQoj/YNJcAQDD

Score

8^/10

Malware Config

Targets

- Target
  
  2398cb5d966b6b35d12adc2d6945aada01143aa6c24a27c5247dfd950ee78457
- Size
  
  36KB
- MD5
  
  751e66b7f311b58f741ba4b89b0f1b4e
- SHA1
  
  862e15262ee72aaed95b9e92617be046583e4653
- SHA256
  
  2398cb5d966b6b35d12adc2d6945aada01143aa6c24a27c5247dfd950ee78457
- SHA512
  
  4a203367453d470caadaefc8568fade370fdf60d6dbd64e85a2702e3ae0f5c03044d45936d310eba7e1697936e9e253d0f12a97f4ab39dee19694efe31887d88
- SSDEEP
  
  768:NqQoj/dSzNVQ1mDNJWbKEdBMQXQ3Cn4eQQDrcwxj:MQoj/YNJcAQDD
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2