b06e0e80819672ab30ec7cf30eec77f68b1af31bb458d5a8a487febc6cfd8783 | Triage

Sharing

General

Target

b06e0e80819672ab30ec7cf30eec77f68b1af31bb458d5a8a487febc6cfd8783
Size

317KB
Sample

221204-bks1tahc8t
MD5

7b20676c22c094e9a0291eccb50deac9
SHA1

f3359f67ae2e853630ed009d4af8ecfc548dbc11
SHA256

b06e0e80819672ab30ec7cf30eec77f68b1af31bb458d5a8a487febc6cfd8783
SHA512

bd92ac35f86cf1f6499bdc9576927d1694f7c76fd26609c31231fb8bd164c69e536a8acbb5b62c2b3760faebc70bdad0c348d098360dbcdeefdd6439154f2ee1
SSDEEP

6144:D3y579pvPx7iLbii5bkgVuN+xSKV7Wkrsf7Ls+1d8H5/fA0o+:jy579hJOXikbkgaISKVesRLx

Score

8^/10

Malware Config

Targets

- Target
  
  b06e0e80819672ab30ec7cf30eec77f68b1af31bb458d5a8a487febc6cfd8783
- Size
  
  317KB
- MD5
  
  7b20676c22c094e9a0291eccb50deac9
- SHA1
  
  f3359f67ae2e853630ed009d4af8ecfc548dbc11
- SHA256
  
  b06e0e80819672ab30ec7cf30eec77f68b1af31bb458d5a8a487febc6cfd8783
- SHA512
  
  bd92ac35f86cf1f6499bdc9576927d1694f7c76fd26609c31231fb8bd164c69e536a8acbb5b62c2b3760faebc70bdad0c348d098360dbcdeefdd6439154f2ee1
- SSDEEP
  
  6144:D3y579pvPx7iLbii5bkgVuN+xSKV7Wkrsf7Ls+1d8H5/fA0o+:jy579hJOXikbkgaISKVesRLx
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2