c1d70dce1510d832f64e405cdf2699cd52cc8238899367b9430029c57953e5e6 | Triage

Sharing

General

Target

c1d70dce1510d832f64e405cdf2699cd52cc8238899367b9430029c57953e5e6
Size

1.7MB
Sample

230210-3v18qacc2x
MD5

36f78a8ea81e6d55c52863c62e503e1c
SHA1

6182c738a307b10e5edbd708ea0461716ba7f3d7
SHA256

c1d70dce1510d832f64e405cdf2699cd52cc8238899367b9430029c57953e5e6
SHA512

5759a738da456e1e38d3cb255223fc0f9afde500703ad29874af35243ba41e36824822a353c3267d3bb81b59fc153d8236e260afb2f588922e16f2c4eae1ec70
SSDEEP

49152:beWh6RBfJXAE6UtM4QswSqg+nIN0U3ab/Mm4XXdX4nGId:beWh6RBfKEToTgkIBabEm49X4nGq

Score

7^/10

Malware Config

Targets

- Target
  
  c1d70dce1510d832f64e405cdf2699cd52cc8238899367b9430029c57953e5e6
- Size
  
  1.7MB
- MD5
  
  36f78a8ea81e6d55c52863c62e503e1c
- SHA1
  
  6182c738a307b10e5edbd708ea0461716ba7f3d7
- SHA256
  
  c1d70dce1510d832f64e405cdf2699cd52cc8238899367b9430029c57953e5e6
- SHA512
  
  5759a738da456e1e38d3cb255223fc0f9afde500703ad29874af35243ba41e36824822a353c3267d3bb81b59fc153d8236e260afb2f588922e16f2c4eae1ec70
- SSDEEP
  
  49152:beWh6RBfJXAE6UtM4QswSqg+nIN0U3ab/Mm4XXdX4nGId:beWh6RBfKEToTgkIBabEm49X4nGq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1