98b7ab329aea95f525ce207352ddf9424a5e1146c0e97f78653b3a9322995ecf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98b7ab329aea95f525ce207352ddf9424a5e1146c0e97f78653b3a9322995ecf
Size

5.2MB
Sample

230201-3jjvasfb9w
MD5

18099d22db8cd50fed86749c60dad990
SHA1

45a232f4266245c79e30483a8c567d5d9b39914f
SHA256

98b7ab329aea95f525ce207352ddf9424a5e1146c0e97f78653b3a9322995ecf
SHA512

7a6cc71d5fa2b1023bc4513437efbe5bf9a4485041cb69dcc8e03ed9b380a698a1224e7968b786f373efb3f319c9116a7fc8ad322492c359019e90f8888f0927
SSDEEP

98304:pKbSQygFqAduxRsvXytvcdDSg4VG2+4Z15KO0+KGEAP2532CchxalMchUF6:pYRyfGYWSgKG2BZ2cO5kK46

Score

8^/10

Malware Config

Targets

- Target
  
  98b7ab329aea95f525ce207352ddf9424a5e1146c0e97f78653b3a9322995ecf
- Size
  
  5.2MB
- MD5
  
  18099d22db8cd50fed86749c60dad990
- SHA1
  
  45a232f4266245c79e30483a8c567d5d9b39914f
- SHA256
  
  98b7ab329aea95f525ce207352ddf9424a5e1146c0e97f78653b3a9322995ecf
- SHA512
  
  7a6cc71d5fa2b1023bc4513437efbe5bf9a4485041cb69dcc8e03ed9b380a698a1224e7968b786f373efb3f319c9116a7fc8ad322492c359019e90f8888f0927
- SSDEEP
  
  98304:pKbSQygFqAduxRsvXytvcdDSg4VG2+4Z15KO0+KGEAP2532CchxalMchUF6:pYRyfGYWSgKG2BZ2cO5kK46
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2