e81cf1b3b935df71dfb7d4b85ad00f9437d7201da6224201d3e42943bc5568ac | Triage

Sharing

General

Target

e81cf1b3b935df71dfb7d4b85ad00f9437d7201da6224201d3e42943bc5568ac
Size

41KB
Sample

221206-244vjafe4s
MD5

095be71db8bf27fc4db5e414ccc2ee31
SHA1

7d101711ed050ee4fdbf8bb1f9504938e6a02aea
SHA256

e81cf1b3b935df71dfb7d4b85ad00f9437d7201da6224201d3e42943bc5568ac
SHA512

4c67200af2c8be6de962ae27680910a52bcdd356a9a6fcf9f6f646b6f848ff2e3f872de34150bb9f11fe98351d19768224eb6f2d51682098dc320a695c103066
SSDEEP

768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnioNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUzNzd

Score

8^/10

Malware Config

Targets

- Target
  
  e81cf1b3b935df71dfb7d4b85ad00f9437d7201da6224201d3e42943bc5568ac
- Size
  
  41KB
- MD5
  
  095be71db8bf27fc4db5e414ccc2ee31
- SHA1
  
  7d101711ed050ee4fdbf8bb1f9504938e6a02aea
- SHA256
  
  e81cf1b3b935df71dfb7d4b85ad00f9437d7201da6224201d3e42943bc5568ac
- SHA512
  
  4c67200af2c8be6de962ae27680910a52bcdd356a9a6fcf9f6f646b6f848ff2e3f872de34150bb9f11fe98351d19768224eb6f2d51682098dc320a695c103066
- SSDEEP
  
  768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnioNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUzNzd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2