efb650cab83629e613ffd239ff43f96e04e350b60ce3ed62000f3d6646eacbcb | Triage

Resubmissions

12/01/2023, 04:29

230112-e4js2afb79 7

12/01/2023, 04:12

230112-es1bmsfb52 7

Sharing

Copy URL Twitter E-mail

General

Target

efb650cab83629e613ffd239ff43f96e04e350b60ce3ed62000f3d6646eacbcb
Size

1.3MB
Sample

230112-e4js2afb79
MD5

3a247a5a1fd06ee42a166a6a25cc8390
SHA1

fb5db2f13de8ed6675b70aa9caf6e233ccc930ac
SHA256

efb650cab83629e613ffd239ff43f96e04e350b60ce3ed62000f3d6646eacbcb
SHA512

1914e91a42571dc7a8071f7eb77cdada8d04f980711835417d06d2084d64880890cfbfcdaf4d08c4f2b5dee1a2a4e1ee0cf2487cab7393bb69ea9a5115235ee2
SSDEEP

24576:YLeTtjJFtHrKCtge1jVcmMjtVmKWGlm4WWogNRwpN2j9sJtN0RLwu6YhHx/dTYuU:YLYkDeVVcmMTmKWaWWogN2n2ZKCwuzx6

Score

7^/10

Malware Config

Targets

- Target
  
  efb650cab83629e613ffd239ff43f96e04e350b60ce3ed62000f3d6646eacbcb
- Size
  
  1.3MB
- MD5
  
  3a247a5a1fd06ee42a166a6a25cc8390
- SHA1
  
  fb5db2f13de8ed6675b70aa9caf6e233ccc930ac
- SHA256
  
  efb650cab83629e613ffd239ff43f96e04e350b60ce3ed62000f3d6646eacbcb
- SHA512
  
  1914e91a42571dc7a8071f7eb77cdada8d04f980711835417d06d2084d64880890cfbfcdaf4d08c4f2b5dee1a2a4e1ee0cf2487cab7393bb69ea9a5115235ee2
- SSDEEP
  
  24576:YLeTtjJFtHrKCtge1jVcmMjtVmKWGlm4WWogNRwpN2j9sJtN0RLwu6YhHx/dTYuU:YLYkDeVVcmMTmKWaWWogN2n2ZKCwuzx6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2