dd4431e123571acf42fba15bf0c3066cd62d6d55c1f9eb55d9a32b2256eebe19 | Triage

Sharing

General

Target

dd4431e123571acf42fba15bf0c3066cd62d6d55c1f9eb55d9a32b2256eebe19
Size

1.6MB
Sample

230320-ayvk5ach9y
MD5

0086e6e6b06a52ae52ae433b14b2b2fe
SHA1

33d27959533f8418fdac0914d2e27996440b6239
SHA256

dd4431e123571acf42fba15bf0c3066cd62d6d55c1f9eb55d9a32b2256eebe19
SHA512

fe0a4fe0e9694bfe4624b277802b23003ee6187fec6dd704196b5bc68e89d2aa0487d7e4bb24d7695437e8a52d676529ba029cf7c3920d72034e9ef93ff56710
SSDEEP

49152:OCWhF7BfJXAEsk4Bd8lJ8gNNV085zx+s7T6j7ma:OCWhF7BfKE2jqJ8KA85zx+sf6jqa

Score

7^/10

Malware Config

Targets

- Target
  
  dd4431e123571acf42fba15bf0c3066cd62d6d55c1f9eb55d9a32b2256eebe19
- Size
  
  1.6MB
- MD5
  
  0086e6e6b06a52ae52ae433b14b2b2fe
- SHA1
  
  33d27959533f8418fdac0914d2e27996440b6239
- SHA256
  
  dd4431e123571acf42fba15bf0c3066cd62d6d55c1f9eb55d9a32b2256eebe19
- SHA512
  
  fe0a4fe0e9694bfe4624b277802b23003ee6187fec6dd704196b5bc68e89d2aa0487d7e4bb24d7695437e8a52d676529ba029cf7c3920d72034e9ef93ff56710
- SSDEEP
  
  49152:OCWhF7BfJXAEsk4Bd8lJ8gNNV085zx+s7T6j7ma:OCWhF7BfKE2jqJ8KA85zx+sf6jqa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1