965775f49e6e3beeeae9569568504a9e0c80b7ddb98da3ceb3ad6d03b2af7343 | Triage

Sharing

General

Target

965775f49e6e3beeeae9569568504a9e0c80b7ddb98da3ceb3ad6d03b2af7343
Size

206KB
Sample

230607-p9wpwsbc5v
MD5

d9afdf9d9f480a20a35c930606acfd2c
SHA1

e23273c57b365c4d569d26c5f26b6a164afb9ac2
SHA256

965775f49e6e3beeeae9569568504a9e0c80b7ddb98da3ceb3ad6d03b2af7343
SHA512

240d72f46f0970b97b7c5d1aa0f37678cfcdd50013e1083761ce21aa9b1427ad74e70834d5486a0238c72be84c0050451ceff8da81732b2138bc424dbb7a4124
SSDEEP

3072:meTRJ0kHbnpN23kQKp5XzutZXKGrpeN84LuZAIybiy3xEfbi:FTR2AnpN2wDurXBeBuZAIMEj

Score

7^/10

Malware Config

Targets

- Target
  
  965775f49e6e3beeeae9569568504a9e0c80b7ddb98da3ceb3ad6d03b2af7343
- Size
  
  206KB
- MD5
  
  d9afdf9d9f480a20a35c930606acfd2c
- SHA1
  
  e23273c57b365c4d569d26c5f26b6a164afb9ac2
- SHA256
  
  965775f49e6e3beeeae9569568504a9e0c80b7ddb98da3ceb3ad6d03b2af7343
- SHA512
  
  240d72f46f0970b97b7c5d1aa0f37678cfcdd50013e1083761ce21aa9b1427ad74e70834d5486a0238c72be84c0050451ceff8da81732b2138bc424dbb7a4124
- SSDEEP
  
  3072:meTRJ0kHbnpN23kQKp5XzutZXKGrpeN84LuZAIybiy3xEfbi:FTR2AnpN2wDurXBeBuZAIMEj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1