2a7c62fb5cfcb03fa3b5174ab6a68f2b2f0e7391f20d58b07a48bd9c4d224921 | Triage

Sharing

General

Target

file.exe
Size

1.8MB
Sample

221222-2fdcnsaf2z
MD5

3851198c19403276c3f04fa1d7987ac3
SHA1

d23dbfeebb6c541714b4fd1058bc642bee528975
SHA256

2a7c62fb5cfcb03fa3b5174ab6a68f2b2f0e7391f20d58b07a48bd9c4d224921
SHA512

e0b4d8ce7ac38916a651ac0add90a3ad541ee483c71bc7d387bdc7816a7dc141c1f566a84100d9f643285bc9a6d5e3679ffc8dbb13bd53b34ade4e6ac8cbffe5
SSDEEP

24576:RtVSn52pAf2rDNtl2aCHXdLSuhMyvLvwzKLqKy+f81TcOCDThWD6ibINLbSB/irs:tSn52KNWKLqFBFMhaxbaLuBKrs

Score

8^/10

Malware Config

Targets

- Target
  
  file.exe
- Size
  
  1.8MB
- MD5
  
  3851198c19403276c3f04fa1d7987ac3
- SHA1
  
  d23dbfeebb6c541714b4fd1058bc642bee528975
- SHA256
  
  2a7c62fb5cfcb03fa3b5174ab6a68f2b2f0e7391f20d58b07a48bd9c4d224921
- SHA512
  
  e0b4d8ce7ac38916a651ac0add90a3ad541ee483c71bc7d387bdc7816a7dc141c1f566a84100d9f643285bc9a6d5e3679ffc8dbb13bd53b34ade4e6ac8cbffe5
- SSDEEP
  
  24576:RtVSn52pAf2rDNtl2aCHXdLSuhMyvLvwzKLqKy+f81TcOCDThWD6ibINLbSB/irs:tSn52KNWKLqFBFMhaxbaLuBKrs
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2