9aa437b03e9aa653619622a75eaf006ef55e33d7296bcebe0008a848202c6a5f | Triage

Sharing

General

Target

9aa437b03e9aa653619622a75eaf006ef55e33d7296bcebe0008a848202c6a5f
Size

1.5MB
Sample

221217-vd492sbf9s
MD5

6631b01813159c78c44c377cf8326a39
SHA1

1179a9443a100539c39baf7de0ff56f199ed71c7
SHA256

9aa437b03e9aa653619622a75eaf006ef55e33d7296bcebe0008a848202c6a5f
SHA512

97116b6cf17c2425d667a4fdf29bbfd4f798c5c76cdb9edd6f5df9fd665d5124af8f658d070519b991a83ed4704c9367ff36a10f38721d0e0f754885d395359c
SSDEEP

24576:QTbBv5rUwXVGFTa2yx6Anbn7LJeRyakviWz01DBeZiLyCdjwCYbMrOZVYCHmY035:CBDX5x9bnGkv41DB0CJw3gr2KCc35

Score

7^/10

Malware Config

Targets

- Target
  
  9aa437b03e9aa653619622a75eaf006ef55e33d7296bcebe0008a848202c6a5f
- Size
  
  1.5MB
- MD5
  
  6631b01813159c78c44c377cf8326a39
- SHA1
  
  1179a9443a100539c39baf7de0ff56f199ed71c7
- SHA256
  
  9aa437b03e9aa653619622a75eaf006ef55e33d7296bcebe0008a848202c6a5f
- SHA512
  
  97116b6cf17c2425d667a4fdf29bbfd4f798c5c76cdb9edd6f5df9fd665d5124af8f658d070519b991a83ed4704c9367ff36a10f38721d0e0f754885d395359c
- SSDEEP
  
  24576:QTbBv5rUwXVGFTa2yx6Anbn7LJeRyakviWz01DBeZiLyCdjwCYbMrOZVYCHmY035:CBDX5x9bnGkv41DB0CJw3gr2KCc35
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1