af224825700487ad5f93433b5d48e5a4ad4ec2a4572c582dc1dbdf816f77f827 | Triage

Sharing

General

Target

af224825700487ad5f93433b5d48e5a4ad4ec2a4572c582dc1dbdf816f77f827
Size

284KB
Sample

221204-qf7ezaff4w
MD5

51350e779aee29f189e95854929fd171
SHA1

ebf7550b5ad2fa0d4286e651e0eeb05c6d20c515
SHA256

af224825700487ad5f93433b5d48e5a4ad4ec2a4572c582dc1dbdf816f77f827
SHA512

77715603b2a9c95c49be36476984b35d46863b0f61d3b94e6b9009f72191b98c783ce0eb7eb06b1b31a726a03c358e77f29fca63af6383f1418145df6d4ab192
SSDEEP

6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSv:pGaf05a7XikbkgaISKVsVeS

Score

8^/10

Malware Config

Targets

- Target
  
  af224825700487ad5f93433b5d48e5a4ad4ec2a4572c582dc1dbdf816f77f827
- Size
  
  284KB
- MD5
  
  51350e779aee29f189e95854929fd171
- SHA1
  
  ebf7550b5ad2fa0d4286e651e0eeb05c6d20c515
- SHA256
  
  af224825700487ad5f93433b5d48e5a4ad4ec2a4572c582dc1dbdf816f77f827
- SHA512
  
  77715603b2a9c95c49be36476984b35d46863b0f61d3b94e6b9009f72191b98c783ce0eb7eb06b1b31a726a03c358e77f29fca63af6383f1418145df6d4ab192
- SSDEEP
  
  6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSv:pGaf05a7XikbkgaISKVsVeS
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2