ae6c7cb66d2ce9ae045c4e8a75c7e28b23185e2ff8fe45fe32e3c802e87f9043 | Triage

Sharing

General

Target

ae6c7cb66d2ce9ae045c4e8a75c7e28b23185e2ff8fe45fe32e3c802e87f9043
Size

1.5MB
Sample

230318-f1gd6sdd6s
MD5

9f9e211936405eb8a82f1d5994410fe3
SHA1

0d89d49e105f0f5969e5130ee548a4c1b8f5371d
SHA256

ae6c7cb66d2ce9ae045c4e8a75c7e28b23185e2ff8fe45fe32e3c802e87f9043
SHA512

8bb77ac69203392b9282756f9f5b143207775fed3450a19758b505076eb3837a515473d2372fa28991a5a79317ee8a8af70e95abd907d746cec4e3b86fb7400e
SSDEEP

24576:gJr8tE+gHqYxcvENb94f5m2j1GkY5YNeGTsU11OF9KFHihG6A5aJns7YZdOhIUZ2:gJ4NYxl/4ImgdJGAs9H950ns7YZAhIE2

Score

7^/10

Malware Config

Targets

- Target
  
  ae6c7cb66d2ce9ae045c4e8a75c7e28b23185e2ff8fe45fe32e3c802e87f9043
- Size
  
  1.5MB
- MD5
  
  9f9e211936405eb8a82f1d5994410fe3
- SHA1
  
  0d89d49e105f0f5969e5130ee548a4c1b8f5371d
- SHA256
  
  ae6c7cb66d2ce9ae045c4e8a75c7e28b23185e2ff8fe45fe32e3c802e87f9043
- SHA512
  
  8bb77ac69203392b9282756f9f5b143207775fed3450a19758b505076eb3837a515473d2372fa28991a5a79317ee8a8af70e95abd907d746cec4e3b86fb7400e
- SSDEEP
  
  24576:gJr8tE+gHqYxcvENb94f5m2j1GkY5YNeGTsU11OF9KFHihG6A5aJns7YZdOhIUZ2:gJ4NYxl/4ImgdJGAs9H950ns7YZAhIE2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1