9e85f7943e932ddc83d3857cf119e4805d108e24e429cee2440ad7ccc745da25 | Triage

Sharing

General

Target

9e85f7943e932ddc83d3857cf119e4805d108e24e429cee2440ad7ccc745da25
Size

1.6MB
Sample

230319-nnn79aab9w
MD5

8cb9c5744bf5b792c0dfe7f26a43b2d9
SHA1

fab2f00c33a901061fbd8160d595e99e9a8323bb
SHA256

9e85f7943e932ddc83d3857cf119e4805d108e24e429cee2440ad7ccc745da25
SHA512

5dfff21d7958066a8aedfba87771e512d204dfd8be8abad996566f15b824c6b71a6b11292c0d27e530ee216cb6d03298b70bb725fb1d8d4fce0118f163cb9089
SSDEEP

49152:OCWhF7BfJXAEsIfENqXIkTogiT5z1DPsisP8:OCWhF7BfKEHzXG1Rs2

Score

7^/10

Malware Config

Targets

- Target
  
  9e85f7943e932ddc83d3857cf119e4805d108e24e429cee2440ad7ccc745da25
- Size
  
  1.6MB
- MD5
  
  8cb9c5744bf5b792c0dfe7f26a43b2d9
- SHA1
  
  fab2f00c33a901061fbd8160d595e99e9a8323bb
- SHA256
  
  9e85f7943e932ddc83d3857cf119e4805d108e24e429cee2440ad7ccc745da25
- SHA512
  
  5dfff21d7958066a8aedfba87771e512d204dfd8be8abad996566f15b824c6b71a6b11292c0d27e530ee216cb6d03298b70bb725fb1d8d4fce0118f163cb9089
- SSDEEP
  
  49152:OCWhF7BfJXAEsIfENqXIkTogiT5z1DPsisP8:OCWhF7BfKEHzXG1Rs2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1