76a607dc1424fd68b573710c12ca6e63877358f446d27952339a9af06723b847 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76a607dc1424fd68b573710c12ca6e63877358f446d27952339a9af06723b847
Size

1.3MB
Sample

230215-h3b9caac7t
MD5

e35b037a28288fce45f4ec21d088f2c8
SHA1

aae7e973f57a89f11fd9c7b1546a98591ce5c62a
SHA256

76a607dc1424fd68b573710c12ca6e63877358f446d27952339a9af06723b847
SHA512

1238a44ece3d3ac2d4510e095a4bb926aca0f59cfb7bdb442d1f29374758fb97b8474ec2a7247ba24e14fd68609e1eae590545560d18356b127de352c018bd87
SSDEEP

24576:YLeTtjJFtHrKEAPL+3ufjZ7ZEoC6YlDewzIeD6cLmicEJR8zlMtQri0j2+i:YLYkEYeubJZhAZewzX+QmeilMmrs+i

Score

7^/10

Malware Config

Targets

- Target
  
  76a607dc1424fd68b573710c12ca6e63877358f446d27952339a9af06723b847
- Size
  
  1.3MB
- MD5
  
  e35b037a28288fce45f4ec21d088f2c8
- SHA1
  
  aae7e973f57a89f11fd9c7b1546a98591ce5c62a
- SHA256
  
  76a607dc1424fd68b573710c12ca6e63877358f446d27952339a9af06723b847
- SHA512
  
  1238a44ece3d3ac2d4510e095a4bb926aca0f59cfb7bdb442d1f29374758fb97b8474ec2a7247ba24e14fd68609e1eae590545560d18356b127de352c018bd87
- SSDEEP
  
  24576:YLeTtjJFtHrKEAPL+3ufjZ7ZEoC6YlDewzIeD6cLmicEJR8zlMtQri0j2+i:YLYkEYeubJZhAZewzX+QmeilMmrs+i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1