79889dc73ae94395fc4710e505e3d2ac0720bf12475be205a389dfaad171db2f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

79889dc73ae94395fc4710e505e3d2ac0720bf12475be205a389dfaad171db2f
Size

1.3MB
Sample

230101-f2vm7abc23
MD5

8d756055c2a70408a9d28347cea542ac
SHA1

d4133f40f9e21e3ea3836a4c5764e13284981e8b
SHA256

79889dc73ae94395fc4710e505e3d2ac0720bf12475be205a389dfaad171db2f
SHA512

2cf0bcde1c614014096412c66578789d79196731e60fb21898b96464e966ef8e0adaf46c6e4d9f0160880118a2e332a9ff84d11b7964893ffc1fa7c49f0699b7
SSDEEP

24576:I/XEXjJSFHUKHPn6E8UU6dWNSjkQNMUjLVK3cXKLRybL2ngAcGrP1:I/oS/t8qc+jh8JNlRfP1

Score

7^/10

Malware Config

Targets

- Target
  
  79889dc73ae94395fc4710e505e3d2ac0720bf12475be205a389dfaad171db2f
- Size
  
  1.3MB
- MD5
  
  8d756055c2a70408a9d28347cea542ac
- SHA1
  
  d4133f40f9e21e3ea3836a4c5764e13284981e8b
- SHA256
  
  79889dc73ae94395fc4710e505e3d2ac0720bf12475be205a389dfaad171db2f
- SHA512
  
  2cf0bcde1c614014096412c66578789d79196731e60fb21898b96464e966ef8e0adaf46c6e4d9f0160880118a2e332a9ff84d11b7964893ffc1fa7c49f0699b7
- SSDEEP
  
  24576:I/XEXjJSFHUKHPn6E8UU6dWNSjkQNMUjLVK3cXKLRybL2ngAcGrP1:I/oS/t8qc+jh8JNlRfP1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1