e2108d52cf7a08424523abfb3e81df88db0c62661e3e42de75feb411d187f294 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e2108d52cf7a08424523abfb3e81df88db0c62661e3e42de75feb411d187f294
Size

1.4MB
Sample

230213-jjze7sbb6z
MD5

2796a3e85faca307376694328d28c471
SHA1

cc9ab35a0b8a1b5baff591616701bc025129524d
SHA256

e2108d52cf7a08424523abfb3e81df88db0c62661e3e42de75feb411d187f294
SHA512

af7349f382094ae78675ecc2d6c975590f1c76f6197b8d31416ee2cd4003611d26c020ca9761069dee9f957156efbcafd8a18db70bbfc27f28cd949bac8c32ee
SSDEEP

24576:I/XEXjJSFHUK18MhcCyCrrTH/8zugykuPvTYq+RK5iV63CsS4sCJAOlxJ7vrR8lL:I/oS18icCTHMzaTYq+RwiV6Ss/JGOlXA

Score

7^/10

Malware Config

Targets

- Target
  
  e2108d52cf7a08424523abfb3e81df88db0c62661e3e42de75feb411d187f294
- Size
  
  1.4MB
- MD5
  
  2796a3e85faca307376694328d28c471
- SHA1
  
  cc9ab35a0b8a1b5baff591616701bc025129524d
- SHA256
  
  e2108d52cf7a08424523abfb3e81df88db0c62661e3e42de75feb411d187f294
- SHA512
  
  af7349f382094ae78675ecc2d6c975590f1c76f6197b8d31416ee2cd4003611d26c020ca9761069dee9f957156efbcafd8a18db70bbfc27f28cd949bac8c32ee
- SSDEEP
  
  24576:I/XEXjJSFHUK18MhcCyCrrTH/8zugykuPvTYq+RK5iV63CsS4sCJAOlxJ7vrR8lL:I/oS18icCTHMzaTYq+RwiV6Ss/JGOlXA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1