dac38eb87ca8d55883370f1790fb65f0565bfef36bbcb443c75079e3ed096bc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dac38eb87ca8d55883370f1790fb65f0565bfef36bbcb443c75079e3ed096bc2
Size

200KB
Sample

221203-2eyl8afa9s
MD5

34844a3d756afdc7d9df20270b318ca0
SHA1

7f2260f2e9c66533c8c6aca0f7941fb74a5fe9f0
SHA256

dac38eb87ca8d55883370f1790fb65f0565bfef36bbcb443c75079e3ed096bc2
SHA512

ef438268d1bb7ebb2b84ef618176d32146c3f0eee897b4b88cfe5b4f3d55ffaae566edd0c51533fba8ade7076f479f43fba60a7c6b0e34ff84dca5322993fad6
SSDEEP

3072:aa/1eQ5lW3y4CpCfCGCCOCwC9CvCFCfCLCvCUCLC2FInROUSRSGSuSQSmSNS4SQ8:P03yGFInRO

Score

8^/10

Malware Config

Targets

- Target
  
  dac38eb87ca8d55883370f1790fb65f0565bfef36bbcb443c75079e3ed096bc2
- Size
  
  200KB
- MD5
  
  34844a3d756afdc7d9df20270b318ca0
- SHA1
  
  7f2260f2e9c66533c8c6aca0f7941fb74a5fe9f0
- SHA256
  
  dac38eb87ca8d55883370f1790fb65f0565bfef36bbcb443c75079e3ed096bc2
- SHA512
  
  ef438268d1bb7ebb2b84ef618176d32146c3f0eee897b4b88cfe5b4f3d55ffaae566edd0c51533fba8ade7076f479f43fba60a7c6b0e34ff84dca5322993fad6
- SSDEEP
  
  3072:aa/1eQ5lW3y4CpCfCGCCOCwC9CvCFCfCLCvCUCLC2FInROUSRSGSuSQSmSNS4SQ8:P03yGFInRO
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2