de7ddb86c3f88348ca461bda4793b717942738314b4464c515426d2ec2e3cf64 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de7ddb86c3f88348ca461bda4793b717942738314b4464c515426d2ec2e3cf64
Size

205KB
Sample

230607-vq1sdsdd58
MD5

3cafbf16f09c23c8c8cfebe65d79bb70
SHA1

1580a0b374bac860a98b88c8347464db154e2b59
SHA256

de7ddb86c3f88348ca461bda4793b717942738314b4464c515426d2ec2e3cf64
SHA512

51f8c71b3e0e89bcf0305671497d68737c7df3c0b21f57f518d3cd55126924897fed9c6886acb1328ef20f45c248cffd25c16cc0d7a8ffcfdf6f32d1f505e895
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  de7ddb86c3f88348ca461bda4793b717942738314b4464c515426d2ec2e3cf64
- Size
  
  205KB
- MD5
  
  3cafbf16f09c23c8c8cfebe65d79bb70
- SHA1
  
  1580a0b374bac860a98b88c8347464db154e2b59
- SHA256
  
  de7ddb86c3f88348ca461bda4793b717942738314b4464c515426d2ec2e3cf64
- SHA512
  
  51f8c71b3e0e89bcf0305671497d68737c7df3c0b21f57f518d3cd55126924897fed9c6886acb1328ef20f45c248cffd25c16cc0d7a8ffcfdf6f32d1f505e895
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1