5aa0008ac7a204787006240fd234dc1fab888fd200b42d605f00ab970173cdb1 | Triage

Sharing

General

Target

5aa0008ac7a204787006240fd234dc1fab888fd200b42d605f00ab970173cdb1
Size

1.5MB
Sample

221228-hwhgsacg2w
MD5

140baf80ebfd2cff1e5369ac024cf5e3
SHA1

ae65b5aae18f10f3a5964b6d9bdf29f9663624ac
SHA256

5aa0008ac7a204787006240fd234dc1fab888fd200b42d605f00ab970173cdb1
SHA512

6a62d44a0f7390526b1bff9d68dacc62e63d8eb8f6110816b2492cb57381f7edb6cc25ed9e61cc96eb9b96d080e238efa5ac5ec48810bbe8c2e86da18b51a9df
SSDEEP

24576:I/XEXjJSFHUKliHQy+mMEjX98KlPreQ3VCceVC8XaoWpjMqRZ32GPcnk6tnwh118:I/oSlyjv8KxdVCceVjaoWpj7ywikMQ1y

Score

7^/10

Malware Config

Targets

- Target
  
  5aa0008ac7a204787006240fd234dc1fab888fd200b42d605f00ab970173cdb1
- Size
  
  1.5MB
- MD5
  
  140baf80ebfd2cff1e5369ac024cf5e3
- SHA1
  
  ae65b5aae18f10f3a5964b6d9bdf29f9663624ac
- SHA256
  
  5aa0008ac7a204787006240fd234dc1fab888fd200b42d605f00ab970173cdb1
- SHA512
  
  6a62d44a0f7390526b1bff9d68dacc62e63d8eb8f6110816b2492cb57381f7edb6cc25ed9e61cc96eb9b96d080e238efa5ac5ec48810bbe8c2e86da18b51a9df
- SSDEEP
  
  24576:I/XEXjJSFHUKliHQy+mMEjX98KlPreQ3VCceVC8XaoWpjMqRZ32GPcnk6tnwh118:I/oSlyjv8KxdVCceVjaoWpj7ywikMQ1y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1