3d8dffb5c06f32fbe64cf1fc8d2e3007848453c1b2c23ddf78fc044d68385f3e | Triage

Sharing

General

Target

3d8dffb5c06f32fbe64cf1fc8d2e3007848453c1b2c23ddf78fc044d68385f3e
Size

206KB
Sample

230607-z2cxxsge61
MD5

33d5596dc2915bd7c63f5ea77e92a109
SHA1

a887249c70df903ddb545dad7b2d4d4605e6962e
SHA256

3d8dffb5c06f32fbe64cf1fc8d2e3007848453c1b2c23ddf78fc044d68385f3e
SHA512

2e89ee3ec8f4d5dbd93a9fb39f68e4d7ab65e821e05ec81b74da750f5ac87858886c6dbacecbfdc131919194ed3b054ace947a0fb94e46769fee4628ce16d082
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  3d8dffb5c06f32fbe64cf1fc8d2e3007848453c1b2c23ddf78fc044d68385f3e
- Size
  
  206KB
- MD5
  
  33d5596dc2915bd7c63f5ea77e92a109
- SHA1
  
  a887249c70df903ddb545dad7b2d4d4605e6962e
- SHA256
  
  3d8dffb5c06f32fbe64cf1fc8d2e3007848453c1b2c23ddf78fc044d68385f3e
- SHA512
  
  2e89ee3ec8f4d5dbd93a9fb39f68e4d7ab65e821e05ec81b74da750f5ac87858886c6dbacecbfdc131919194ed3b054ace947a0fb94e46769fee4628ce16d082
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1