337a2990526cc0d8468c6caac96174e9d32c3d18d2dff91a63140459b62c6274 | Triage

Sharing

General

Target

337a2990526cc0d8468c6caac96174e9d32c3d18d2dff91a63140459b62c6274
Size

190KB
Sample

221203-jssc9aba8y
MD5

a9db4c457d90f7a65965a634bd2c8a86
SHA1

72bd2fc68c3800455e144d7290e8673c5c217e9a
SHA256

337a2990526cc0d8468c6caac96174e9d32c3d18d2dff91a63140459b62c6274
SHA512

68112615f7dbc0ef87c323507775182dc477baaf5f3ad07ca2638b355830c92be37f1536f1461338d1d7ba07fcdbd9dae34c5b78bd7df1b7ebf5461342a66cd7
SSDEEP

3072:zMEMvxdknmg1tDbuLB+5xGT21JqaEvNTy6o12MNVRHkL0G9rs6SfaizV3PZXsDMc:zME1nmg1tDbJ5621YNpoDvI0G9o6SvVU

Score

8^/10

Malware Config

Targets

- Target
  
  337a2990526cc0d8468c6caac96174e9d32c3d18d2dff91a63140459b62c6274
- Size
  
  190KB
- MD5
  
  a9db4c457d90f7a65965a634bd2c8a86
- SHA1
  
  72bd2fc68c3800455e144d7290e8673c5c217e9a
- SHA256
  
  337a2990526cc0d8468c6caac96174e9d32c3d18d2dff91a63140459b62c6274
- SHA512
  
  68112615f7dbc0ef87c323507775182dc477baaf5f3ad07ca2638b355830c92be37f1536f1461338d1d7ba07fcdbd9dae34c5b78bd7df1b7ebf5461342a66cd7
- SSDEEP
  
  3072:zMEMvxdknmg1tDbuLB+5xGT21JqaEvNTy6o12MNVRHkL0G9rs6SfaizV3PZXsDMc:zME1nmg1tDbJ5621YNpoDvI0G9o6SvVU
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2