f2a797499e7fe85ffd859d1c36f6f5732d1e68e596b886f6424ce914bc6a3ffc | Triage

Sharing

General

Target

f2a797499e7fe85ffd859d1c36f6f5732d1e68e596b886f6424ce914bc6a3ffc
Size

1.7MB
Sample

221222-yrl76sfb52
MD5

8de6e6757cba6c53d0140e96e5bcd2e7
SHA1

e246a6acf4535d7db57add659323003f0813f754
SHA256

f2a797499e7fe85ffd859d1c36f6f5732d1e68e596b886f6424ce914bc6a3ffc
SHA512

10b5078e48e76ab4f0f717eb8be7046ba97cb1c18114ce8b533fbe738d28cb6c5fd956ca544b3b69916d02d2b3327677b02dd7ef4e2a0501f99ae90c7aae06f0
SSDEEP

24576:zry2uXzmwLjNH9q4XX4tCBIjEFobpF8v5NlJX6cpI7aNxv41B1B4VVYQ+Ghim:zunFH9JXX4Ar6F05pXTIuNlVV1+Yim

Score

7^/10

Malware Config

Targets

- Target
  
  f2a797499e7fe85ffd859d1c36f6f5732d1e68e596b886f6424ce914bc6a3ffc
- Size
  
  1.7MB
- MD5
  
  8de6e6757cba6c53d0140e96e5bcd2e7
- SHA1
  
  e246a6acf4535d7db57add659323003f0813f754
- SHA256
  
  f2a797499e7fe85ffd859d1c36f6f5732d1e68e596b886f6424ce914bc6a3ffc
- SHA512
  
  10b5078e48e76ab4f0f717eb8be7046ba97cb1c18114ce8b533fbe738d28cb6c5fd956ca544b3b69916d02d2b3327677b02dd7ef4e2a0501f99ae90c7aae06f0
- SSDEEP
  
  24576:zry2uXzmwLjNH9q4XX4tCBIjEFobpF8v5NlJX6cpI7aNxv41B1B4VVYQ+Ghim:zunFH9JXX4Ar6F05pXTIuNlVV1+Yim
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1