56285401c75ab327b2ea8ae29f96bbfbaefd439c164f4a2ac22f7e2881aa6c60 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

56285401c75ab327b2ea8ae29f96bbfbaefd439c164f4a2ac22f7e2881aa6c60
Size

1.3MB
Sample

221219-vhyytsae9y
MD5

a0f9529a4828fe8c3049d667639e7056
SHA1

f348dd1023e51ad84d972a4f7e93263ef7dc4906
SHA256

56285401c75ab327b2ea8ae29f96bbfbaefd439c164f4a2ac22f7e2881aa6c60
SHA512

1c632f6da57e34c0d6044c772433565c46ae6abb92432df45d5665ef35fa87ef4fb17d7a0292df96758d3f9387bebd9a42b46115211d6c0bbbd0de91078e01fa
SSDEEP

24576:I/XEXjJSFHUKf/T3Jhk8G9YW+xEAysoMiiws/LGNpiweQ05rZCFEG:I/oSle8G91+G+1ws/J/Q0x0uG

Score

7^/10

Malware Config

Targets

- Target
  
  56285401c75ab327b2ea8ae29f96bbfbaefd439c164f4a2ac22f7e2881aa6c60
- Size
  
  1.3MB
- MD5
  
  a0f9529a4828fe8c3049d667639e7056
- SHA1
  
  f348dd1023e51ad84d972a4f7e93263ef7dc4906
- SHA256
  
  56285401c75ab327b2ea8ae29f96bbfbaefd439c164f4a2ac22f7e2881aa6c60
- SHA512
  
  1c632f6da57e34c0d6044c772433565c46ae6abb92432df45d5665ef35fa87ef4fb17d7a0292df96758d3f9387bebd9a42b46115211d6c0bbbd0de91078e01fa
- SSDEEP
  
  24576:I/XEXjJSFHUKf/T3Jhk8G9YW+xEAysoMiiws/LGNpiweQ05rZCFEG:I/oSle8G91+G+1ws/J/Q0x0uG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1