9bd254077fb2f8249a57f53d95807eef12f5451d2714d357ce157a7f52af7912 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9bd254077fb2f8249a57f53d95807eef12f5451d2714d357ce157a7f52af7912
Size

205KB
Sample

230607-tddlnace45
MD5

d9359c577c297da751cad048e5da42dd
SHA1

95ccc406809ae5be07d96700b63f428e7494f8b2
SHA256

9bd254077fb2f8249a57f53d95807eef12f5451d2714d357ce157a7f52af7912
SHA512

b29be2368b5ae7f28ba088706f230d431986fc37245678f48e3e41d1f624585f9b13b0bcadafeeb9364d362065bbe6f523c64f973267486f36c7c4623a8178b2
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  9bd254077fb2f8249a57f53d95807eef12f5451d2714d357ce157a7f52af7912
- Size
  
  205KB
- MD5
  
  d9359c577c297da751cad048e5da42dd
- SHA1
  
  95ccc406809ae5be07d96700b63f428e7494f8b2
- SHA256
  
  9bd254077fb2f8249a57f53d95807eef12f5451d2714d357ce157a7f52af7912
- SHA512
  
  b29be2368b5ae7f28ba088706f230d431986fc37245678f48e3e41d1f624585f9b13b0bcadafeeb9364d362065bbe6f523c64f973267486f36c7c4623a8178b2
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1