6072ac1727aa0a579e897a8ca213fd7f372b0d359e09090f873c0d365d485e2b | Triage

Sharing

General

Target

6072ac1727aa0a579e897a8ca213fd7f372b0d359e09090f873c0d365d485e2b
Size

205KB
Sample

230607-rpte5sbf45
MD5

d3e3f57652944cb222a70e48550ea014
SHA1

9526d0ec10cc8a9e377d59f93e21e7e16532d712
SHA256

6072ac1727aa0a579e897a8ca213fd7f372b0d359e09090f873c0d365d485e2b
SHA512

5ca22ef8e53ef636eab14bd494030a8929c5f14e387d230298d0545b6d3d81d65a16398340b21879d50e32cb6079b602ba06863f58cf4494edd8174f193ab0f8
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  6072ac1727aa0a579e897a8ca213fd7f372b0d359e09090f873c0d365d485e2b
- Size
  
  205KB
- MD5
  
  d3e3f57652944cb222a70e48550ea014
- SHA1
  
  9526d0ec10cc8a9e377d59f93e21e7e16532d712
- SHA256
  
  6072ac1727aa0a579e897a8ca213fd7f372b0d359e09090f873c0d365d485e2b
- SHA512
  
  5ca22ef8e53ef636eab14bd494030a8929c5f14e387d230298d0545b6d3d81d65a16398340b21879d50e32cb6079b602ba06863f58cf4494edd8174f193ab0f8
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1