d9a3dd55455a83eff0c5fd4f0cd1c640271faf4fd1962ac40f7775cf2c785e84 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d9a3dd55455a83eff0c5fd4f0cd1c640271faf4fd1962ac40f7775cf2c785e84
Size

885KB
Sample

221206-ak6fgadg9s
MD5

c7e94f8d0907a897a5fe77a4a627021f
SHA1

1096ecb165a32d63176806b49ba926399675efdd
SHA256

d9a3dd55455a83eff0c5fd4f0cd1c640271faf4fd1962ac40f7775cf2c785e84
SHA512

8603fbccc2510d0d1d520e984ed278ec241c378a79345322aa1c8ff6ef8e911a578117da779303c0f97f5dde13d9bf29274af874312415e2187cb6fffb7de938
SSDEEP

24576:P2O/Glk/25Mro6osNLushLOnfsczkAdMmx8lX:Hs6o69Osc1dMmU

Score

8^/10

Malware Config

Targets

- Target
  
  d9a3dd55455a83eff0c5fd4f0cd1c640271faf4fd1962ac40f7775cf2c785e84
- Size
  
  885KB
- MD5
  
  c7e94f8d0907a897a5fe77a4a627021f
- SHA1
  
  1096ecb165a32d63176806b49ba926399675efdd
- SHA256
  
  d9a3dd55455a83eff0c5fd4f0cd1c640271faf4fd1962ac40f7775cf2c785e84
- SHA512
  
  8603fbccc2510d0d1d520e984ed278ec241c378a79345322aa1c8ff6ef8e911a578117da779303c0f97f5dde13d9bf29274af874312415e2187cb6fffb7de938
- SSDEEP
  
  24576:P2O/Glk/25Mro6osNLushLOnfsczkAdMmx8lX:Hs6o69Osc1dMmU
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2