b8b30e3c5ad6e4903219c5985681a3b24a4491effb64aba30bf880a2b64f430f | Triage

Sharing

General

Target

b8b30e3c5ad6e4903219c5985681a3b24a4491effb64aba30bf880a2b64f430f
Size

3.8MB
Sample

221203-yxfmksbe59
MD5

8088d94a12ad9b3863986c8b2ac81754
SHA1

e84ed1a2a5d2b09030b1e85e7b067b76f7644fb2
SHA256

b8b30e3c5ad6e4903219c5985681a3b24a4491effb64aba30bf880a2b64f430f
SHA512

87c43cb0c3ce5a57cdbdabca17853abb09470dadfdf1ecba436acc053855e8702cfdcf265caa3ca17b6be36f15cc3fe1389d82cac3ea21d892ba08235e107475
SSDEEP

98304:yovOOGwQBkv8QEyW0U6ycuCH4eZ+Wd8EoO9jd8StODSVD2UT:FvOOVP0QEyW08cuCHt8EoO9BtODUT

Score

8^/10

Malware Config

Targets

- Target
  
  b8b30e3c5ad6e4903219c5985681a3b24a4491effb64aba30bf880a2b64f430f
- Size
  
  3.8MB
- MD5
  
  8088d94a12ad9b3863986c8b2ac81754
- SHA1
  
  e84ed1a2a5d2b09030b1e85e7b067b76f7644fb2
- SHA256
  
  b8b30e3c5ad6e4903219c5985681a3b24a4491effb64aba30bf880a2b64f430f
- SHA512
  
  87c43cb0c3ce5a57cdbdabca17853abb09470dadfdf1ecba436acc053855e8702cfdcf265caa3ca17b6be36f15cc3fe1389d82cac3ea21d892ba08235e107475
- SSDEEP
  
  98304:yovOOGwQBkv8QEyW0U6ycuCH4eZ+Wd8EoO9jd8StODSVD2UT:FvOOVP0QEyW08cuCHt8EoO9BtODUT
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2