1aecc3e3462fee03c0f5377567aa0c0aa689bbbaa57804bd3e058f51e05e17bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1aecc3e3462fee03c0f5377567aa0c0aa689bbbaa57804bd3e058f51e05e17bc
Size

17.3MB
Sample

221221-m2hf7afc91
MD5

3bea883c80e63b6f16cdcf2e3722958e
SHA1

f69b9fcaed82f03a29ad2db865eb8e4e1112fd58
SHA256

1aecc3e3462fee03c0f5377567aa0c0aa689bbbaa57804bd3e058f51e05e17bc
SHA512

f8605b4c0a5b4ddaf1e606f0cd63ba71e515626bde6405808d072ef972f50d72428d1df72fbbcd61f400be2c3db99ef94495e8d60e2312f35c1b2a8c292be054
SSDEEP

393216:UpT2nely0lP8Pnq7GaQlKXaBmxoEBlHs+BAZKgmIGPIlYDU0DUYcj:IT2e0062GjUK8xxBmXGPPU0DUF

Score

8^/10

Malware Config

Targets

- Target
  
  1aecc3e3462fee03c0f5377567aa0c0aa689bbbaa57804bd3e058f51e05e17bc
- Size
  
  17.3MB
- MD5
  
  3bea883c80e63b6f16cdcf2e3722958e
- SHA1
  
  f69b9fcaed82f03a29ad2db865eb8e4e1112fd58
- SHA256
  
  1aecc3e3462fee03c0f5377567aa0c0aa689bbbaa57804bd3e058f51e05e17bc
- SHA512
  
  f8605b4c0a5b4ddaf1e606f0cd63ba71e515626bde6405808d072ef972f50d72428d1df72fbbcd61f400be2c3db99ef94495e8d60e2312f35c1b2a8c292be054
- SSDEEP
  
  393216:UpT2nely0lP8Pnq7GaQlKXaBmxoEBlHs+BAZKgmIGPIlYDU0DUYcj:IT2e0062GjUK8xxBmXGPPU0DUF
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2