ae8fe6b8cf06784d72601d5224b897d489b99ce8353ba8e4d01ca38bcb90b85a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ae8fe6b8cf06784d72601d5224b897d489b99ce8353ba8e4d01ca38bcb90b85a
Size

206KB
Sample

230607-1aczaagf4v
MD5

db29fed2ac99cd3d8cf1336d2502b5fc
SHA1

5db922bbbfc3d9b68b692738fb15c41a2cad304d
SHA256

ae8fe6b8cf06784d72601d5224b897d489b99ce8353ba8e4d01ca38bcb90b85a
SHA512

c4ecfaac222466f4df83a920e30ebee7cd8c87c576d77fa60e3a6661edd416abd23a1e0125e7e54f438965e760aab603f65591bd080999511d10821b71c35ea7
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  ae8fe6b8cf06784d72601d5224b897d489b99ce8353ba8e4d01ca38bcb90b85a
- Size
  
  206KB
- MD5
  
  db29fed2ac99cd3d8cf1336d2502b5fc
- SHA1
  
  5db922bbbfc3d9b68b692738fb15c41a2cad304d
- SHA256
  
  ae8fe6b8cf06784d72601d5224b897d489b99ce8353ba8e4d01ca38bcb90b85a
- SHA512
  
  c4ecfaac222466f4df83a920e30ebee7cd8c87c576d77fa60e3a6661edd416abd23a1e0125e7e54f438965e760aab603f65591bd080999511d10821b71c35ea7
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1