c4430243c2f28127a725c7ddc4ab2dedba633fa682070097708e4b088c88ce0d | Triage

Sharing

General

Target

c4430243c2f28127a725c7ddc4ab2dedba633fa682070097708e4b088c88ce0d
Size

104KB
Sample

221205-2rb9raec72
MD5

4088f73f994529c0659b64d3527e4e2c
SHA1

004865f5f5997b310f57a874a4b60b0516e8f2ee
SHA256

c4430243c2f28127a725c7ddc4ab2dedba633fa682070097708e4b088c88ce0d
SHA512

217a197a19257bbb0f9a35c6f6c2c8f552bb3cca6c5b57b5d74c536ef8d90e6d046e058c78d4aa5e0011ca2d71e2b9b81dd14d88b48d98bfa4d589f1d5576112
SSDEEP

1536:3oRG81Ltl1wia5XY7wfVWEm/QD/btVXL2wqLFeRGJqJdJNJnJIJVPhQjiOBDXFpt:181BwF5XYkIEmI/btVb2wqYRGhy8ZoJ

Score

8^/10

Malware Config

Targets

- Target
  
  c4430243c2f28127a725c7ddc4ab2dedba633fa682070097708e4b088c88ce0d
- Size
  
  104KB
- MD5
  
  4088f73f994529c0659b64d3527e4e2c
- SHA1
  
  004865f5f5997b310f57a874a4b60b0516e8f2ee
- SHA256
  
  c4430243c2f28127a725c7ddc4ab2dedba633fa682070097708e4b088c88ce0d
- SHA512
  
  217a197a19257bbb0f9a35c6f6c2c8f552bb3cca6c5b57b5d74c536ef8d90e6d046e058c78d4aa5e0011ca2d71e2b9b81dd14d88b48d98bfa4d589f1d5576112
- SSDEEP
  
  1536:3oRG81Ltl1wia5XY7wfVWEm/QD/btVXL2wqLFeRGJqJdJNJnJIJVPhQjiOBDXFpt:181BwF5XYkIEmI/btVb2wqYRGhy8ZoJ
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2