5d8e2f686da4366d7378bd4e34756495043e83386bcd772e33c5b83b15a5b21a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d8e2f686da4366d7378bd4e34756495043e83386bcd772e33c5b83b15a5b21a
Size

1.6MB
Sample

230320-3c93xafg68
MD5

ef8b07d6ce4e937b8fdc8fdf5b2af515
SHA1

cd836b29d20fbbd4a2f716deaca5dc2d4f24d28b
SHA256

5d8e2f686da4366d7378bd4e34756495043e83386bcd772e33c5b83b15a5b21a
SHA512

c7a1444c92bb752c8abed3fc728f25aa94ab136ce03ae350adfc7d4333c2aa1b1a931bd66f2a0cd2ff5f76d0eef0cd0c2dd67287cf120d54c913d5d11072aecc
SSDEEP

24576:PgZXoZUTVdt7K7UbXwMciZKYNV0s1Yic87dqp0Rf4L9MkSvmToRoCYH/q2jUN8Up:u5XxPHN5NmAfIzSvmTqYSkc8UlU1I

Score

7^/10

Malware Config

Targets

- Target
  
  5d8e2f686da4366d7378bd4e34756495043e83386bcd772e33c5b83b15a5b21a
- Size
  
  1.6MB
- MD5
  
  ef8b07d6ce4e937b8fdc8fdf5b2af515
- SHA1
  
  cd836b29d20fbbd4a2f716deaca5dc2d4f24d28b
- SHA256
  
  5d8e2f686da4366d7378bd4e34756495043e83386bcd772e33c5b83b15a5b21a
- SHA512
  
  c7a1444c92bb752c8abed3fc728f25aa94ab136ce03ae350adfc7d4333c2aa1b1a931bd66f2a0cd2ff5f76d0eef0cd0c2dd67287cf120d54c913d5d11072aecc
- SSDEEP
  
  24576:PgZXoZUTVdt7K7UbXwMciZKYNV0s1Yic87dqp0Rf4L9MkSvmToRoCYH/q2jUN8Up:u5XxPHN5NmAfIzSvmTqYSkc8UlU1I
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1