a6989812c635027773f68f24859e9a93cb282fb2cc47848cc229f4bfeff9b1b7 | Triage

Sharing

General

Target

a6989812c635027773f68f24859e9a93cb282fb2cc47848cc229f4bfeff9b1b7
Size

1.5MB
Sample

221219-hfd5esed48
MD5

2b0cd508f803c8a0cb57a925d820f8c7
SHA1

130990925fd68f6904680779b8f4eb2b2f906fda
SHA256

a6989812c635027773f68f24859e9a93cb282fb2cc47848cc229f4bfeff9b1b7
SHA512

c3ee6c17cd24e868ff7929ab5ce4361f05634d46229b92d701840bf67ac265149f66d6cab1cb0e989d835d9df84d73b033eafa27efbf1815977c83abc7447a2b
SSDEEP

24576:VJr8tEZgHqUo5XJs3Qb8DOQn+qQX8AAVJTM4JdrcqA8znRIQBgvGv/46XPJF:VJ4oz5XJsAb8DOQnXQDAVJw4YATaQoGb

Score

7^/10

Malware Config

Targets

- Target
  
  a6989812c635027773f68f24859e9a93cb282fb2cc47848cc229f4bfeff9b1b7
- Size
  
  1.5MB
- MD5
  
  2b0cd508f803c8a0cb57a925d820f8c7
- SHA1
  
  130990925fd68f6904680779b8f4eb2b2f906fda
- SHA256
  
  a6989812c635027773f68f24859e9a93cb282fb2cc47848cc229f4bfeff9b1b7
- SHA512
  
  c3ee6c17cd24e868ff7929ab5ce4361f05634d46229b92d701840bf67ac265149f66d6cab1cb0e989d835d9df84d73b033eafa27efbf1815977c83abc7447a2b
- SSDEEP
  
  24576:VJr8tEZgHqUo5XJs3Qb8DOQn+qQX8AAVJTM4JdrcqA8znRIQBgvGv/46XPJF:VJ4oz5XJsAb8DOQnXQDAVJw4YATaQoGb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1