7956405085d6e7d9c65725d6462a108d1ddd6d4b55e67eb707482b6dcf9c4b4e | Triage

Sharing

General

Target

7956405085d6e7d9c65725d6462a108d1ddd6d4b55e67eb707482b6dcf9c4b4e
Size

34KB
Sample

221203-mffepsbg66
MD5

5fe9eb1fb846909ee9303cba9bf19133
SHA1

9ec87abafef4684e98cb53be5d4bb57d5cf434bb
SHA256

7956405085d6e7d9c65725d6462a108d1ddd6d4b55e67eb707482b6dcf9c4b4e
SHA512

58ad2553c5dcbb87e6d46b5190b8ab5a7e8879dc342f4735bc656a3708999b321fbd2b28593339779e7abf064d28c30e087b5b7015a73a4288b2261a2e046f1c
SSDEEP

768:3zQYScGrIubHuYtvdxwYHw5FAe2QzncwxM:jQTIubHy5wQzw

Score

8^/10

Malware Config

Targets

- Target
  
  7956405085d6e7d9c65725d6462a108d1ddd6d4b55e67eb707482b6dcf9c4b4e
- Size
  
  34KB
- MD5
  
  5fe9eb1fb846909ee9303cba9bf19133
- SHA1
  
  9ec87abafef4684e98cb53be5d4bb57d5cf434bb
- SHA256
  
  7956405085d6e7d9c65725d6462a108d1ddd6d4b55e67eb707482b6dcf9c4b4e
- SHA512
  
  58ad2553c5dcbb87e6d46b5190b8ab5a7e8879dc342f4735bc656a3708999b321fbd2b28593339779e7abf064d28c30e087b5b7015a73a4288b2261a2e046f1c
- SSDEEP
  
  768:3zQYScGrIubHuYtvdxwYHw5FAe2QzncwxM:jQTIubHy5wQzw
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2