22711e96053727c562b0fe0be7941d1b875559d7a8b7c4316d6cfea9e906241b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

22711e96053727c562b0fe0be7941d1b875559d7a8b7c4316d6cfea9e906241b
Size

205KB
Sample

230607-scbv1ace6x
MD5

9bc010b9fcd93d38419506386e9709c1
SHA1

215a300cd63ef6d2aa8d59ad4b1aa1bb6ba262d4
SHA256

22711e96053727c562b0fe0be7941d1b875559d7a8b7c4316d6cfea9e906241b
SHA512

a1ee79c1904b85f2239c7d71ae8e442c58f4559fa12a5a091c36b7d826efe24f14e225fe9405039f9707f965a4f551a26db41ba26d282df2f5f7d64f175744c3
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  22711e96053727c562b0fe0be7941d1b875559d7a8b7c4316d6cfea9e906241b
- Size
  
  205KB
- MD5
  
  9bc010b9fcd93d38419506386e9709c1
- SHA1
  
  215a300cd63ef6d2aa8d59ad4b1aa1bb6ba262d4
- SHA256
  
  22711e96053727c562b0fe0be7941d1b875559d7a8b7c4316d6cfea9e906241b
- SHA512
  
  a1ee79c1904b85f2239c7d71ae8e442c58f4559fa12a5a091c36b7d826efe24f14e225fe9405039f9707f965a4f551a26db41ba26d282df2f5f7d64f175744c3
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1