951512f772f2962a36a635d5bfbbd0aa499bdda196787c6011e901cfcea0d5a0 | Triage

Sharing

General

Target

951512f772f2962a36a635d5bfbbd0aa499bdda196787c6011e901cfcea0d5a0
Size

278KB
Sample

221202-wfqp4sdh5x
MD5

88ffa3cb2314bace3dfe19343b3c92e0
SHA1

23d2455ab08d3d62fec2c653181d815bb9df9c5a
SHA256

951512f772f2962a36a635d5bfbbd0aa499bdda196787c6011e901cfcea0d5a0
SHA512

f3d941e958dc029f8329687b61a5bef2101c276261cf079aed07718de3d4500e5af73676282a735e8c6006dfc7cf0f5bba1177fcaaf6e4737e2a7d4466b3737b
SSDEEP

6144:Lu2urzh9xu/XkauJzAH6ldxU5GtPqahp9WxyM8wvIbVBeyFAl:Lutrzh9xOXkFAmdxU5G59p/oIJBTAl

Score

8^/10

Malware Config

Targets

- Target
  
  951512f772f2962a36a635d5bfbbd0aa499bdda196787c6011e901cfcea0d5a0
- Size
  
  278KB
- MD5
  
  88ffa3cb2314bace3dfe19343b3c92e0
- SHA1
  
  23d2455ab08d3d62fec2c653181d815bb9df9c5a
- SHA256
  
  951512f772f2962a36a635d5bfbbd0aa499bdda196787c6011e901cfcea0d5a0
- SHA512
  
  f3d941e958dc029f8329687b61a5bef2101c276261cf079aed07718de3d4500e5af73676282a735e8c6006dfc7cf0f5bba1177fcaaf6e4737e2a7d4466b3737b
- SSDEEP
  
  6144:Lu2urzh9xu/XkauJzAH6ldxU5GtPqahp9WxyM8wvIbVBeyFAl:Lutrzh9xOXkFAmdxU5G59p/oIJBTAl
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2