3bc6dd766a73ec469b88dd66bbc41c8473be8c4ae877f9c4b3d1e85adc85bb49 | Triage

Sharing

General

Target

3bc6dd766a73ec469b88dd66bbc41c8473be8c4ae877f9c4b3d1e85adc85bb49
Size

206KB
Sample

230607-1mjycsgg8z
MD5

b98f5075e1f4b3702c350895048d3e93
SHA1

b30065a7ba50ba9ea5700ac58bfe9032320ec50e
SHA256

3bc6dd766a73ec469b88dd66bbc41c8473be8c4ae877f9c4b3d1e85adc85bb49
SHA512

4d889de4cde80d384b2bf5bbeeacaef12e883b9a5df92a43aca98cfb662f7ee52fe2b57150d5faf8df70847aec55ef70b72b5cd318cf28b86bb06ef5a16c97b1
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  3bc6dd766a73ec469b88dd66bbc41c8473be8c4ae877f9c4b3d1e85adc85bb49
- Size
  
  206KB
- MD5
  
  b98f5075e1f4b3702c350895048d3e93
- SHA1
  
  b30065a7ba50ba9ea5700ac58bfe9032320ec50e
- SHA256
  
  3bc6dd766a73ec469b88dd66bbc41c8473be8c4ae877f9c4b3d1e85adc85bb49
- SHA512
  
  4d889de4cde80d384b2bf5bbeeacaef12e883b9a5df92a43aca98cfb662f7ee52fe2b57150d5faf8df70847aec55ef70b72b5cd318cf28b86bb06ef5a16c97b1
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1