798dbf16c60e2e96121753c6e399345f10d1f96cc60c19a13b572c317ec6106b | Triage

Sharing

General

Target

798dbf16c60e2e96121753c6e399345f10d1f96cc60c19a13b572c317ec6106b
Size

56KB
Sample

221206-rszrbsab9s
MD5

05c4389c881e46717dca51c4068379e0
SHA1

eea556f014b2eb41be1514e1d3a25765fef96999
SHA256

798dbf16c60e2e96121753c6e399345f10d1f96cc60c19a13b572c317ec6106b
SHA512

d35d84903b43da396dab9872d62471bca1d9cad4920980c712639b1ed02c2078e608acb7374fbe45141a987699876bc3d8a197c6038e82960b829261e2fd7dd5
SSDEEP

1536:9OhCVsQ3KMfwM2aU8F78Pw4ASDVIIpyaxfC:9zVsQtEyo49UUaRC

Score

8^/10

Malware Config

Targets

- Target
  
  798dbf16c60e2e96121753c6e399345f10d1f96cc60c19a13b572c317ec6106b
- Size
  
  56KB
- MD5
  
  05c4389c881e46717dca51c4068379e0
- SHA1
  
  eea556f014b2eb41be1514e1d3a25765fef96999
- SHA256
  
  798dbf16c60e2e96121753c6e399345f10d1f96cc60c19a13b572c317ec6106b
- SHA512
  
  d35d84903b43da396dab9872d62471bca1d9cad4920980c712639b1ed02c2078e608acb7374fbe45141a987699876bc3d8a197c6038e82960b829261e2fd7dd5
- SSDEEP
  
  1536:9OhCVsQ3KMfwM2aU8F78Pw4ASDVIIpyaxfC:9zVsQtEyo49UUaRC
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2