58bb6ed2e7646792b2db6a55bd874f4dda7088d53fdf93fbc98d653d41090d47 | Triage

Sharing

General

Target

58bb6ed2e7646792b2db6a55bd874f4dda7088d53fdf93fbc98d653d41090d47
Size

3.1MB
Sample

221206-qgj13abd54
MD5

a611d5fc202e313b856892a37dd9091d
SHA1

fd04b37018290db3718810e3e8dd3c566ae9d708
SHA256

58bb6ed2e7646792b2db6a55bd874f4dda7088d53fdf93fbc98d653d41090d47
SHA512

ddf455647cea59c848fc1c461c2fe692692b5fe49f7f67d84962c59b5e08479deb3abee7315ba099c3edd9f98bbcbb038a6eab35e2ae384e0e817eab4f9439e2
SSDEEP

49152:/C36k0zhoJIO2BcewJSuJaoowRO208LzjBQG4Ddh2mIqUzrcHzSwtuntsOjlIJaG:USoq+aopIaLWGUL2mIhzYewAqilwf

Score

8^/10

Malware Config

Targets

- Target
  
  58bb6ed2e7646792b2db6a55bd874f4dda7088d53fdf93fbc98d653d41090d47
- Size
  
  3.1MB
- MD5
  
  a611d5fc202e313b856892a37dd9091d
- SHA1
  
  fd04b37018290db3718810e3e8dd3c566ae9d708
- SHA256
  
  58bb6ed2e7646792b2db6a55bd874f4dda7088d53fdf93fbc98d653d41090d47
- SHA512
  
  ddf455647cea59c848fc1c461c2fe692692b5fe49f7f67d84962c59b5e08479deb3abee7315ba099c3edd9f98bbcbb038a6eab35e2ae384e0e817eab4f9439e2
- SSDEEP
  
  49152:/C36k0zhoJIO2BcewJSuJaoowRO208LzjBQG4Ddh2mIqUzrcHzSwtuntsOjlIJaG:USoq+aopIaLWGUL2mIhzYewAqilwf
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2