ca63ec0101b74b32af65c93f1eb1ea4e4e5fbac65a308ac8cea14d15d61de488 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca63ec0101b74b32af65c93f1eb1ea4e4e5fbac65a308ac8cea14d15d61de488
Size

205KB
Sample

230607-se6hdsce91
MD5

1450713d06940d0895b1adbd31752e86
SHA1

036adca63af9802981a1cd258668440a6887dfdd
SHA256

ca63ec0101b74b32af65c93f1eb1ea4e4e5fbac65a308ac8cea14d15d61de488
SHA512

a923a983c0756b8f702952d557274d041fe0d1d6788d5c403e1cc4c586cfe520470fd45d3a3ca928fd812ca9e98f074b667ecd9bc64a26b5084aabc45ac71ef1
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  ca63ec0101b74b32af65c93f1eb1ea4e4e5fbac65a308ac8cea14d15d61de488
- Size
  
  205KB
- MD5
  
  1450713d06940d0895b1adbd31752e86
- SHA1
  
  036adca63af9802981a1cd258668440a6887dfdd
- SHA256
  
  ca63ec0101b74b32af65c93f1eb1ea4e4e5fbac65a308ac8cea14d15d61de488
- SHA512
  
  a923a983c0756b8f702952d557274d041fe0d1d6788d5c403e1cc4c586cfe520470fd45d3a3ca928fd812ca9e98f074b667ecd9bc64a26b5084aabc45ac71ef1
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1