9993e413840360a3184a2862756680d9842ca80db17af162b35fe9c4f8952b82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9993e413840360a3184a2862756680d9842ca80db17af162b35fe9c4f8952b82
Size

1.1MB
Sample

221203-x8ad9sda4y
MD5

72ebd575241617908d09582975506f7f
SHA1

b48203daa899f033ecff59aa608e869562a02aef
SHA256

9993e413840360a3184a2862756680d9842ca80db17af162b35fe9c4f8952b82
SHA512

fab83ddceffe0925612a875c29248057f808cecca26e4eb57320fb8a3b59692a462bfd1493181a46effcedce655981bbe9305a487f1326e82350318455838e39
SSDEEP

24576:85QIzHyuhiDyrPRVu+7nV2IQYQyK2XL43q:85p6iPRVudDyrX86

Score

8^/10

Malware Config

Targets

- Target
  
  9993e413840360a3184a2862756680d9842ca80db17af162b35fe9c4f8952b82
- Size
  
  1.1MB
- MD5
  
  72ebd575241617908d09582975506f7f
- SHA1
  
  b48203daa899f033ecff59aa608e869562a02aef
- SHA256
  
  9993e413840360a3184a2862756680d9842ca80db17af162b35fe9c4f8952b82
- SHA512
  
  fab83ddceffe0925612a875c29248057f808cecca26e4eb57320fb8a3b59692a462bfd1493181a46effcedce655981bbe9305a487f1326e82350318455838e39
- SSDEEP
  
  24576:85QIzHyuhiDyrPRVu+7nV2IQYQyK2XL43q:85p6iPRVudDyrX86
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2