7c813166bb603b8611dda43549d0df2ebf805aaaab4732f634d2c5c4a895c39d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c813166bb603b8611dda43549d0df2ebf805aaaab4732f634d2c5c4a895c39d
Size

1.5MB
Sample

230313-ttqadsbb79
MD5

670efa40acde78b8db356633585aef6c
SHA1

e233583c647fd6d012aa764f2d6c85a16faa829b
SHA256

7c813166bb603b8611dda43549d0df2ebf805aaaab4732f634d2c5c4a895c39d
SHA512

ac8a14630cae6bd9e2f801e6e83c15949ff5a5932925547577718ac0de27dd0c7c09d1abeb1b7fd3ab1a35a6a22fcd94a10c9a140aec0b9eaaa5dcba4ea82a53
SSDEEP

24576:elMiZMVn1db5AnUZLPq8OfMD9wjXe28gS+dwpbHKgFlioZpa5v859VH4ynG5ce58:5FPEf29eXmgMk5vc1Gvm

Score

7^/10

Malware Config

Targets

- Target
  
  7c813166bb603b8611dda43549d0df2ebf805aaaab4732f634d2c5c4a895c39d
- Size
  
  1.5MB
- MD5
  
  670efa40acde78b8db356633585aef6c
- SHA1
  
  e233583c647fd6d012aa764f2d6c85a16faa829b
- SHA256
  
  7c813166bb603b8611dda43549d0df2ebf805aaaab4732f634d2c5c4a895c39d
- SHA512
  
  ac8a14630cae6bd9e2f801e6e83c15949ff5a5932925547577718ac0de27dd0c7c09d1abeb1b7fd3ab1a35a6a22fcd94a10c9a140aec0b9eaaa5dcba4ea82a53
- SSDEEP
  
  24576:elMiZMVn1db5AnUZLPq8OfMD9wjXe28gS+dwpbHKgFlioZpa5v859VH4ynG5ce58:5FPEf29eXmgMk5vc1Gvm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1