67281bf5f7059f2b3ce4983efe383a4b45168403719bb8245017b40471ad57db | Triage

Sharing

Copy URL Twitter E-mail

General

Target

67281bf5f7059f2b3ce4983efe383a4b45168403719bb8245017b40471ad57db
Size

1.6MB
Sample

221225-fgaghsec5w
MD5

c88e2e2b7ce9c8e86852a3a927235d69
SHA1

a01de6dd728b357740d9158cbabc89cc23f6169f
SHA256

67281bf5f7059f2b3ce4983efe383a4b45168403719bb8245017b40471ad57db
SHA512

f15a21eb8ca89e86f8d3bb4bee58996d6fe77830047214ad98e7c9681a14baaa264f9dee56a33d3040efcb7a2d94beb3a12fa169d4cef0d6387effc27262d5be
SSDEEP

49152:I/oScdvJVyOO/8tSbVvM2R3BM5O79bGNo:I/otdvJkO9tSpvM2R3BM5O7r

Score

7^/10

Malware Config

Targets

- Target
  
  67281bf5f7059f2b3ce4983efe383a4b45168403719bb8245017b40471ad57db
- Size
  
  1.6MB
- MD5
  
  c88e2e2b7ce9c8e86852a3a927235d69
- SHA1
  
  a01de6dd728b357740d9158cbabc89cc23f6169f
- SHA256
  
  67281bf5f7059f2b3ce4983efe383a4b45168403719bb8245017b40471ad57db
- SHA512
  
  f15a21eb8ca89e86f8d3bb4bee58996d6fe77830047214ad98e7c9681a14baaa264f9dee56a33d3040efcb7a2d94beb3a12fa169d4cef0d6387effc27262d5be
- SSDEEP
  
  49152:I/oScdvJVyOO/8tSbVvM2R3BM5O79bGNo:I/otdvJkO9tSpvM2R3BM5O7r
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1