2935d404a65904655472022bf648822bae07b450b0fb7d7d14798cc136d00f90 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2935d404a65904655472022bf648822bae07b450b0fb7d7d14798cc136d00f90
Size

1.2MB
Sample

230320-e686psbg77
MD5

afb84621285c4f668fa906a7dcc8d605
SHA1

491dc957884c91f15ebe7a00d721a80772077bdf
SHA256

2935d404a65904655472022bf648822bae07b450b0fb7d7d14798cc136d00f90
SHA512

a1dbbb4c2867fd4d7f22c16de7c812d296bba382be8add58d99b156a48b7456253a4048a5da4a837e778598eaf5572397f3b527c18cb31f88e15f80805c5ff16
SSDEEP

24576:I/XEXjJSFHUK8Ht93bYpVeQvwX9lu5g14GAyJ53xBW/fEUMU8Qd2Z03L:I/oS8HHbYveQvkQ5guGAyJlxo/MUfeZO

Score

7^/10

Malware Config

Targets

- Target
  
  2935d404a65904655472022bf648822bae07b450b0fb7d7d14798cc136d00f90
- Size
  
  1.2MB
- MD5
  
  afb84621285c4f668fa906a7dcc8d605
- SHA1
  
  491dc957884c91f15ebe7a00d721a80772077bdf
- SHA256
  
  2935d404a65904655472022bf648822bae07b450b0fb7d7d14798cc136d00f90
- SHA512
  
  a1dbbb4c2867fd4d7f22c16de7c812d296bba382be8add58d99b156a48b7456253a4048a5da4a837e778598eaf5572397f3b527c18cb31f88e15f80805c5ff16
- SSDEEP
  
  24576:I/XEXjJSFHUK8Ht93bYpVeQvwX9lu5g14GAyJ53xBW/fEUMU8Qd2Z03L:I/oS8HHbYveQvkQ5guGAyJlxo/MUfeZO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1