50e35b329dbe430856433c8654391ccadf7c65c0b918592c5b8e9b6f750cb6e1 | Triage

Sharing

General

Target

50e35b329dbe430856433c8654391ccadf7c65c0b918592c5b8e9b6f750cb6e1
Size

404KB
Sample

221203-tlkd6sef46
MD5

609ea2509019e198c8c6a903dec1f738
SHA1

2148f0a807ce1ffbe0509340c20581dc81b5c5ca
SHA256

50e35b329dbe430856433c8654391ccadf7c65c0b918592c5b8e9b6f750cb6e1
SHA512

f2a295b5f72a1af0579805da64710291b2cf98428ca5ee32beb032812ee7f0a40e0ca20115418c0d2943e4509363d9fe5e6311c904bc53250f4d9e5615f41065
SSDEEP

12288:BK2mhAMJ/cPlJYh0GNDCkCpsWndJXDYD4hY:w2O/GlJEDWndJTYsu

Score

8^/10

Malware Config

Targets

- Target
  
  50e35b329dbe430856433c8654391ccadf7c65c0b918592c5b8e9b6f750cb6e1
- Size
  
  404KB
- MD5
  
  609ea2509019e198c8c6a903dec1f738
- SHA1
  
  2148f0a807ce1ffbe0509340c20581dc81b5c5ca
- SHA256
  
  50e35b329dbe430856433c8654391ccadf7c65c0b918592c5b8e9b6f750cb6e1
- SHA512
  
  f2a295b5f72a1af0579805da64710291b2cf98428ca5ee32beb032812ee7f0a40e0ca20115418c0d2943e4509363d9fe5e6311c904bc53250f4d9e5615f41065
- SSDEEP
  
  12288:BK2mhAMJ/cPlJYh0GNDCkCpsWndJXDYD4hY:w2O/GlJEDWndJTYsu
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2