96997826b08760878571bce1abe2313690ae226cf153af929443a415cca96819 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96997826b08760878571bce1abe2313690ae226cf153af929443a415cca96819
Size

1.6MB
Sample

230318-bzkyraag66
MD5

2f53c0987d39deeac8a6e391bd05817d
SHA1

a9237d8b712ca5b7ab6a725aea5e4f9b92dbe02f
SHA256

96997826b08760878571bce1abe2313690ae226cf153af929443a415cca96819
SHA512

970e7c079b522b17e2b73db0b09e1ba086da674734d66626210a3f90a8a96b2d1e8e083e61f489fc8ef7ea3af8a900a10bc8e86412070d7d3ec6ebc40cb147e7
SSDEEP

24576:TlMiZMVn1db5GnUZLPZhbaWJPYzBhSIY3YXkEGtAkdVhRJIbGa3i77dN+y+GR9v5:mPPPUBQPMkbAqXiSPdN+Rmv9E1+b

Score

7^/10

Malware Config

Targets

- Target
  
  96997826b08760878571bce1abe2313690ae226cf153af929443a415cca96819
- Size
  
  1.6MB
- MD5
  
  2f53c0987d39deeac8a6e391bd05817d
- SHA1
  
  a9237d8b712ca5b7ab6a725aea5e4f9b92dbe02f
- SHA256
  
  96997826b08760878571bce1abe2313690ae226cf153af929443a415cca96819
- SHA512
  
  970e7c079b522b17e2b73db0b09e1ba086da674734d66626210a3f90a8a96b2d1e8e083e61f489fc8ef7ea3af8a900a10bc8e86412070d7d3ec6ebc40cb147e7
- SSDEEP
  
  24576:TlMiZMVn1db5GnUZLPZhbaWJPYzBhSIY3YXkEGtAkdVhRJIbGa3i77dN+y+GR9v5:mPPPUBQPMkbAqXiSPdN+Rmv9E1+b
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1