60cb5090ff57336c7836e7fac665226341688ac11ed5b6dc5a28946f5b68b20c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60cb5090ff57336c7836e7fac665226341688ac11ed5b6dc5a28946f5b68b20c
Size

2.4MB
Sample

221206-qdc4caea6v
MD5

9de11256c177858bea39fe5ef2dc5d47
SHA1

030b3af6a5d1794cf78009c05a80e168e61bbd0d
SHA256

60cb5090ff57336c7836e7fac665226341688ac11ed5b6dc5a28946f5b68b20c
SHA512

ca6fda71336324087f76ca4ed551c13abb6f967274d9c67db1c1d2a82db5b6862c8f8fff9c25286d5c1268f037c2d7b7722b41a579900dd742595e6f496d0910
SSDEEP

49152:AvSH/5HYNbXa0c82mkblEMmL856JsvD/DX+y4onCYDoD5:bR4Nja0cpxQsvD/D+donCYUV

Score

8^/10

Malware Config

Targets

- Target
  
  60cb5090ff57336c7836e7fac665226341688ac11ed5b6dc5a28946f5b68b20c
- Size
  
  2.4MB
- MD5
  
  9de11256c177858bea39fe5ef2dc5d47
- SHA1
  
  030b3af6a5d1794cf78009c05a80e168e61bbd0d
- SHA256
  
  60cb5090ff57336c7836e7fac665226341688ac11ed5b6dc5a28946f5b68b20c
- SHA512
  
  ca6fda71336324087f76ca4ed551c13abb6f967274d9c67db1c1d2a82db5b6862c8f8fff9c25286d5c1268f037c2d7b7722b41a579900dd742595e6f496d0910
- SSDEEP
  
  49152:AvSH/5HYNbXa0c82mkblEMmL856JsvD/DX+y4onCYDoD5:bR4Nja0cpxQsvD/D+donCYUV
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2