b06b63d07e24704df78b1c2b99eaa833f632a982c76df443030d9f2cea164019 | Triage

Sharing

General

Target

b06b63d07e24704df78b1c2b99eaa833f632a982c76df443030d9f2cea164019
Size

57KB
Sample

221207-c5sffsgf82
MD5

7d244a2b46bcef17d771b10105f6248f
SHA1

e45e65eda196f790f252407edf0e7b994a769337
SHA256

b06b63d07e24704df78b1c2b99eaa833f632a982c76df443030d9f2cea164019
SHA512

e5be3384ddaf1bad821057d1d585eb3450b379bc9fdc1fb9a3d27fdb7d398b675a25690aa34a92c60661b88770b8b10b150b8fe4adc545ae91de1a79dfbad63e
SSDEEP

768:PyTUBI2CiAw/SdOBLUK6Dkb02pTEsRqQHOaoBliaNWLjz2onPhlRPegrUwhDvHvT:dK1HogatXOPn0ukDNQwhT

Score

8^/10

Malware Config

Targets

- Target
  
  b06b63d07e24704df78b1c2b99eaa833f632a982c76df443030d9f2cea164019
- Size
  
  57KB
- MD5
  
  7d244a2b46bcef17d771b10105f6248f
- SHA1
  
  e45e65eda196f790f252407edf0e7b994a769337
- SHA256
  
  b06b63d07e24704df78b1c2b99eaa833f632a982c76df443030d9f2cea164019
- SHA512
  
  e5be3384ddaf1bad821057d1d585eb3450b379bc9fdc1fb9a3d27fdb7d398b675a25690aa34a92c60661b88770b8b10b150b8fe4adc545ae91de1a79dfbad63e
- SSDEEP
  
  768:PyTUBI2CiAw/SdOBLUK6Dkb02pTEsRqQHOaoBliaNWLjz2onPhlRPegrUwhDvHvT:dK1HogatXOPn0ukDNQwhT
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2