312aac600519f8c8044cd921efc89a2af57b19e8a8b4d9bff946f7a8913e8c8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

312aac600519f8c8044cd921efc89a2af57b19e8a8b4d9bff946f7a8913e8c8f
Size

1.3MB
Sample

221231-f1rvxacd9x
MD5

0bd729601c42e1bff049c13c83a3f5bc
SHA1

0567b7473fb486f0f0aa071cb7b4a0987d1e1f94
SHA256

312aac600519f8c8044cd921efc89a2af57b19e8a8b4d9bff946f7a8913e8c8f
SHA512

434a13e480bc666ff666812eda9bb4c84da1146d18b736555e68344b6c6d13ac988958db6a1169cf62b30aad31768af14c43b7e7f0c58e5f37e6db4654b30b9e
SSDEEP

24576:zry2uXzmwLYY7Ubu+b/nCv4lBg0de5I9r7rr28H0Ge8GMZeQaQWubnH:zuncNTb/nCvh0qU/xU3rMIZrub

Score

7^/10

Malware Config

Targets

- Target
  
  312aac600519f8c8044cd921efc89a2af57b19e8a8b4d9bff946f7a8913e8c8f
- Size
  
  1.3MB
- MD5
  
  0bd729601c42e1bff049c13c83a3f5bc
- SHA1
  
  0567b7473fb486f0f0aa071cb7b4a0987d1e1f94
- SHA256
  
  312aac600519f8c8044cd921efc89a2af57b19e8a8b4d9bff946f7a8913e8c8f
- SHA512
  
  434a13e480bc666ff666812eda9bb4c84da1146d18b736555e68344b6c6d13ac988958db6a1169cf62b30aad31768af14c43b7e7f0c58e5f37e6db4654b30b9e
- SSDEEP
  
  24576:zry2uXzmwLYY7Ubu+b/nCv4lBg0de5I9r7rr28H0Ge8GMZeQaQWubnH:zuncNTb/nCvh0qU/xU3rMIZrub
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1