67c3a31dbdebe5d26d86110a2e8191bd38bf39ec762273d5b762c148be72f35e | Triage

Sharing

General

Target

67c3a31dbdebe5d26d86110a2e8191bd38bf39ec762273d5b762c148be72f35e
Size

10.9MB
Sample

230206-1lx4laga47
MD5

a34f517fcc6d7e01c16de85bc840463f
SHA1

ddb1513d65a2017d921d77551eabf4b7bdb52be2
SHA256

67c3a31dbdebe5d26d86110a2e8191bd38bf39ec762273d5b762c148be72f35e
SHA512

69e9d8a805eb4924ed0514f787aa0fd7ef01abdf98d19307c4a2b063745b8d9b36755e867a55793c9a209bf954acc73271ec010b6696873faeeca2be1264141b
SSDEEP

196608:ZMz5MoWhAS/HUC3YHTJR0RKT262Ag1FeWGSkyvrqjNbbFbfpQV:29f2x/j6TJRg62AnSk3j1p2

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  67c3a31dbdebe5d26d86110a2e8191bd38bf39ec762273d5b762c148be72f35e
- Size
  
  10.9MB
- MD5
  
  a34f517fcc6d7e01c16de85bc840463f
- SHA1
  
  ddb1513d65a2017d921d77551eabf4b7bdb52be2
- SHA256
  
  67c3a31dbdebe5d26d86110a2e8191bd38bf39ec762273d5b762c148be72f35e
- SHA512
  
  69e9d8a805eb4924ed0514f787aa0fd7ef01abdf98d19307c4a2b063745b8d9b36755e867a55793c9a209bf954acc73271ec010b6696873faeeca2be1264141b
- SSDEEP
  
  196608:ZMz5MoWhAS/HUC3YHTJR0RKT262Ag1FeWGSkyvrqjNbbFbfpQV:29f2x/j6TJRg62AnSk3j1p2
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1