b62991729baab0f5268f1b5923149bfa1f9cfff9f12b461beed68a2b24559b77 | Triage

Sharing

General

Target

b62991729baab0f5268f1b5923149bfa1f9cfff9f12b461beed68a2b24559b77
Size

1.5MB
Sample

230325-wh6t4sdg78
MD5

2ff74e323d4a867c3c4a978950f68d52
SHA1

dd5877b38808d33853efc3a7f419443586155e54
SHA256

b62991729baab0f5268f1b5923149bfa1f9cfff9f12b461beed68a2b24559b77
SHA512

0cccf2ccb149cb9460d7f3ea7161ea55e66aa1ec23b5d8703604a29794d51326602e11cb11facba80e9436032df0628b5f90b3c738942e51a2c9c2edfa21161b
SSDEEP

24576:TlMiZMVn1db5GnUZLPLurxra9qam9qYuzsKl1z6/3VeQd4XZAFu581aordXfIBk:mPPLyxr8LFzsKl1w3Y0V+caK3

Score

7^/10

Malware Config

Targets

- Target
  
  b62991729baab0f5268f1b5923149bfa1f9cfff9f12b461beed68a2b24559b77
- Size
  
  1.5MB
- MD5
  
  2ff74e323d4a867c3c4a978950f68d52
- SHA1
  
  dd5877b38808d33853efc3a7f419443586155e54
- SHA256
  
  b62991729baab0f5268f1b5923149bfa1f9cfff9f12b461beed68a2b24559b77
- SHA512
  
  0cccf2ccb149cb9460d7f3ea7161ea55e66aa1ec23b5d8703604a29794d51326602e11cb11facba80e9436032df0628b5f90b3c738942e51a2c9c2edfa21161b
- SSDEEP
  
  24576:TlMiZMVn1db5GnUZLPLurxra9qam9qYuzsKl1z6/3VeQd4XZAFu581aordXfIBk:mPPLyxr8LFzsKl1w3Y0V+caK3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1