566dbaf678c78d175814ed34e0a71a4d66b61c1068a4a526a4a17be94724896f | Triage

Sharing

General

Target

566dbaf678c78d175814ed34e0a71a4d66b61c1068a4a526a4a17be94724896f
Size

1.4MB
Sample

221231-qbav7sch4t
MD5

686cf7a137ad2037cbba82b87f0d81e1
SHA1

9923a0a538f8ef48f34093d7e44467a778ed7575
SHA256

566dbaf678c78d175814ed34e0a71a4d66b61c1068a4a526a4a17be94724896f
SHA512

5fdadf9037b18b521531aa223786d001dc6d4e5bc1f270e7b194536ab5cf4f5b531ed4e675c1fc55155e45d8007007db573288845ae7d9ecf36a45236207076c
SSDEEP

24576:4ry2uXzmVLmxlBdMya9M8cGvml55eMjIbpfiM3ss46LT4Wd6d7oJbGwIXS9l+R:4unvH375Gv6tKRiOI6LcWEm5iR

Score

7^/10

Malware Config

Targets

- Target
  
  566dbaf678c78d175814ed34e0a71a4d66b61c1068a4a526a4a17be94724896f
- Size
  
  1.4MB
- MD5
  
  686cf7a137ad2037cbba82b87f0d81e1
- SHA1
  
  9923a0a538f8ef48f34093d7e44467a778ed7575
- SHA256
  
  566dbaf678c78d175814ed34e0a71a4d66b61c1068a4a526a4a17be94724896f
- SHA512
  
  5fdadf9037b18b521531aa223786d001dc6d4e5bc1f270e7b194536ab5cf4f5b531ed4e675c1fc55155e45d8007007db573288845ae7d9ecf36a45236207076c
- SSDEEP
  
  24576:4ry2uXzmVLmxlBdMya9M8cGvml55eMjIbpfiM3ss46LT4Wd6d7oJbGwIXS9l+R:4unvH375Gv6tKRiOI6LcWEm5iR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1