b6118d88d3e295ddf500c88781e23ba695062e8d8899967cb549ec18fe50c5c2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b6118d88d3e295ddf500c88781e23ba695062e8d8899967cb549ec18fe50c5c2
Size

1.4MB
Sample

230211-kv3sfabe6s
MD5

537dcb9cd10ab4b92272903f6cc67f05
SHA1

aa00e296aff6b3ce44cbffb469f0026be1239978
SHA256

b6118d88d3e295ddf500c88781e23ba695062e8d8899967cb549ec18fe50c5c2
SHA512

09d07657fc0c6e13f5ebca21252d2772bd5eb54e598dd77c0b556418e250ac63163bafd170aa0414376411e2833f6c9201a5a854f0204ed7b0dca36cbc15c8ab
SSDEEP

24576:gJr8tE+gHqVLcAHoH7g2ojLcwcav5lvZrBEcy9d9JbcdEUGp/8h9aIiHlF1Dj:gJ4NWAHos9zZrGcUcdEppUh9arJ

Score

7^/10

Malware Config

Targets

- Target
  
  b6118d88d3e295ddf500c88781e23ba695062e8d8899967cb549ec18fe50c5c2
- Size
  
  1.4MB
- MD5
  
  537dcb9cd10ab4b92272903f6cc67f05
- SHA1
  
  aa00e296aff6b3ce44cbffb469f0026be1239978
- SHA256
  
  b6118d88d3e295ddf500c88781e23ba695062e8d8899967cb549ec18fe50c5c2
- SHA512
  
  09d07657fc0c6e13f5ebca21252d2772bd5eb54e598dd77c0b556418e250ac63163bafd170aa0414376411e2833f6c9201a5a854f0204ed7b0dca36cbc15c8ab
- SSDEEP
  
  24576:gJr8tE+gHqVLcAHoH7g2ojLcwcav5lvZrBEcy9d9JbcdEUGp/8h9aIiHlF1Dj:gJ4NWAHos9zZrGcUcdEppUh9arJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1