c88e661d84f63639866bc1f42c969e26a5cd49671cbfe4d664409a9a86db2af2 | Triage

Sharing

General

Target

c88e661d84f63639866bc1f42c969e26a5cd49671cbfe4d664409a9a86db2af2
Size

3.6MB
Sample

230105-xe59vagd4z
MD5

e00465200ce344eaab4ad770c2ac40c2
SHA1

a4e89fbc80b9e4b5b020912d4c26f6b8e577217c
SHA256

c88e661d84f63639866bc1f42c969e26a5cd49671cbfe4d664409a9a86db2af2
SHA512

8e97496f0a779b79488d75bcc68108039c762e856f3907d8c17a4099d3376fa77a655649539c2fd4cdc305241638625cb250df962be877a249611b0cfc439a89
SSDEEP

98304:1Zk1vrnRrYpSQghu4BRC4XRlfquCGFLI+d:4BrRhu4BRC4jfqwLI+d

Score

8^/10

Malware Config

Targets

- Target
  
  c88e661d84f63639866bc1f42c969e26a5cd49671cbfe4d664409a9a86db2af2
- Size
  
  3.6MB
- MD5
  
  e00465200ce344eaab4ad770c2ac40c2
- SHA1
  
  a4e89fbc80b9e4b5b020912d4c26f6b8e577217c
- SHA256
  
  c88e661d84f63639866bc1f42c969e26a5cd49671cbfe4d664409a9a86db2af2
- SHA512
  
  8e97496f0a779b79488d75bcc68108039c762e856f3907d8c17a4099d3376fa77a655649539c2fd4cdc305241638625cb250df962be877a249611b0cfc439a89
- SSDEEP
  
  98304:1Zk1vrnRrYpSQghu4BRC4XRlfquCGFLI+d:4BrRhu4BRC4jfqwLI+d
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2