670536c0cfabea3e1202a8345c3fc5c7890104c9b7bd61365d592cd6380aa834 | Triage

Sharing

General

Target

670536c0cfabea3e1202a8345c3fc5c7890104c9b7bd61365d592cd6380aa834
Size

1.8MB
Sample

230318-j42fasbf69
MD5

feebefebc79a5a7ff1973aa57e44bd5b
SHA1

a6ee1c37ed32eef4905e0dc4e59fdfe6b6c2c77b
SHA256

670536c0cfabea3e1202a8345c3fc5c7890104c9b7bd61365d592cd6380aa834
SHA512

d8cdc61dba5d62e3d48f4458b6c516e78039850938bf8977c627834ad12724fdaff4f59e2b9ebe20b6c1d98f425ae55573d096f0ac477197a402c5f346bfd251
SSDEEP

49152:OCWhF7BfJXAEsrv99tWZdBCHBe/qgr9MVzrtfYe:OCWhF7BfKEs19tWZdBWDgpMVz5fv

Score

7^/10

Malware Config

Targets

- Target
  
  670536c0cfabea3e1202a8345c3fc5c7890104c9b7bd61365d592cd6380aa834
- Size
  
  1.8MB
- MD5
  
  feebefebc79a5a7ff1973aa57e44bd5b
- SHA1
  
  a6ee1c37ed32eef4905e0dc4e59fdfe6b6c2c77b
- SHA256
  
  670536c0cfabea3e1202a8345c3fc5c7890104c9b7bd61365d592cd6380aa834
- SHA512
  
  d8cdc61dba5d62e3d48f4458b6c516e78039850938bf8977c627834ad12724fdaff4f59e2b9ebe20b6c1d98f425ae55573d096f0ac477197a402c5f346bfd251
- SSDEEP
  
  49152:OCWhF7BfJXAEsrv99tWZdBCHBe/qgr9MVzrtfYe:OCWhF7BfKEs19tWZdBWDgpMVz5fv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1