e9b5861c31edac2ccbf35a953c768ef15d221b448102123485ace59253388985 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9b5861c31edac2ccbf35a953c768ef15d221b448102123485ace59253388985.exe
Size

1.6MB
Sample

230321-pqyedaac36
MD5

831c2bc941fb6bd50607236e771137e0
SHA1

db1ef30ecb1489fb563b6eeada18d145e609ee8d
SHA256

e9b5861c31edac2ccbf35a953c768ef15d221b448102123485ace59253388985
SHA512

56551e91445dd5a0444f993cd9d3cd3ac8b872fd7bb3faf966e7039a1ad4badde3c3b1e797718ff00babc1e4a04922c18aae2032f7ad0885d4b2c4975d904927
SSDEEP

49152:gJ4NdnnjkozSl0Oeg6TamkVFoibxzbPr4Y2VT:gJ4rnjRU0Pg6TfksSH2l

Score

7^/10

Malware Config

Targets

- Target
  
  e9b5861c31edac2ccbf35a953c768ef15d221b448102123485ace59253388985.exe
- Size
  
  1.6MB
- MD5
  
  831c2bc941fb6bd50607236e771137e0
- SHA1
  
  db1ef30ecb1489fb563b6eeada18d145e609ee8d
- SHA256
  
  e9b5861c31edac2ccbf35a953c768ef15d221b448102123485ace59253388985
- SHA512
  
  56551e91445dd5a0444f993cd9d3cd3ac8b872fd7bb3faf966e7039a1ad4badde3c3b1e797718ff00babc1e4a04922c18aae2032f7ad0885d4b2c4975d904927
- SSDEEP
  
  49152:gJ4NdnnjkozSl0Oeg6TamkVFoibxzbPr4Y2VT:gJ4rnjRU0Pg6TfksSH2l
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2