30dca270cd1f189ea57fef9f5a7bc6545ad4cb4b7661db037e84b8391b14c2c6 | Triage

Sharing

General

Target

30dca270cd1f189ea57fef9f5a7bc6545ad4cb4b7661db037e84b8391b14c2c6
Size

1.4MB
Sample

230318-1xqhwsga5w
MD5

af1f21ad36e87d6653386eadf5e16e8a
SHA1

3b626fc74126bdc244a6716ebafdb77a538c6dff
SHA256

30dca270cd1f189ea57fef9f5a7bc6545ad4cb4b7661db037e84b8391b14c2c6
SHA512

26f654eae982188805b64a5db959cce77e6e0a29cc4c1d7e0595510be78ccb66d0898248ee6453a8f44cd2d00707741b6644cc2d1fdfd47f966e2052f35d6d34
SSDEEP

24576:gJr8tE+gHqEgLfIlIDkjz4hU9bQL5wfI0R1dtJ4iirbwnPVQp9MzTIu:gJ4NEgLfoIuz4G9sL5wrRf8GNQp96ku

Score

7^/10

Malware Config

Targets

- Target
  
  30dca270cd1f189ea57fef9f5a7bc6545ad4cb4b7661db037e84b8391b14c2c6
- Size
  
  1.4MB
- MD5
  
  af1f21ad36e87d6653386eadf5e16e8a
- SHA1
  
  3b626fc74126bdc244a6716ebafdb77a538c6dff
- SHA256
  
  30dca270cd1f189ea57fef9f5a7bc6545ad4cb4b7661db037e84b8391b14c2c6
- SHA512
  
  26f654eae982188805b64a5db959cce77e6e0a29cc4c1d7e0595510be78ccb66d0898248ee6453a8f44cd2d00707741b6644cc2d1fdfd47f966e2052f35d6d34
- SSDEEP
  
  24576:gJr8tE+gHqEgLfIlIDkjz4hU9bQL5wfI0R1dtJ4iirbwnPVQp9MzTIu:gJ4NEgLfoIuz4G9sL5wrRf8GNQp96ku
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1