96237cf865d9306f0ad5ab36efc168184d1c4bd5b4b22cece2db509e23f9d588 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96237cf865d9306f0ad5ab36efc168184d1c4bd5b4b22cece2db509e23f9d588
Size

205KB
Sample

230607-sdqesace8v
MD5

58a3b25d3ca21328c93f1cd47e118ce3
SHA1

ef5ff6bbc799812e2a20945cb65a2c30c8cabde0
SHA256

96237cf865d9306f0ad5ab36efc168184d1c4bd5b4b22cece2db509e23f9d588
SHA512

3051be1d318824dddf6be73c991ec9ff575a8de6019043aeadb5ab8d145cd4a55ce80bb71282fc42d4e06036a92e5cf64bd557617c0693c2eca8ff86ffde6f96
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  96237cf865d9306f0ad5ab36efc168184d1c4bd5b4b22cece2db509e23f9d588
- Size
  
  205KB
- MD5
  
  58a3b25d3ca21328c93f1cd47e118ce3
- SHA1
  
  ef5ff6bbc799812e2a20945cb65a2c30c8cabde0
- SHA256
  
  96237cf865d9306f0ad5ab36efc168184d1c4bd5b4b22cece2db509e23f9d588
- SHA512
  
  3051be1d318824dddf6be73c991ec9ff575a8de6019043aeadb5ab8d145cd4a55ce80bb71282fc42d4e06036a92e5cf64bd557617c0693c2eca8ff86ffde6f96
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1