e46ca2643a45183159754780bd72a4c32f7a169ca7826bc5ae167d4d690de114 | Triage

Sharing

General

Target

e46ca2643a45183159754780bd72a4c32f7a169ca7826bc5ae167d4d690de114
Size

206KB
Sample

230607-zat25aff38
MD5

6003edc5f36e8846f649f138f49592ff
SHA1

a07c19d762ce6966b3e1ac90171f0cfdf933bd19
SHA256

e46ca2643a45183159754780bd72a4c32f7a169ca7826bc5ae167d4d690de114
SHA512

a625e88c40b7bc3637f44f965648a621445f9e13d7e75578ab70d88f67df7804e63dcb9820c792c1131f5d6d7303ae36f0af6213184e79a834864caea717d84a
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  e46ca2643a45183159754780bd72a4c32f7a169ca7826bc5ae167d4d690de114
- Size
  
  206KB
- MD5
  
  6003edc5f36e8846f649f138f49592ff
- SHA1
  
  a07c19d762ce6966b3e1ac90171f0cfdf933bd19
- SHA256
  
  e46ca2643a45183159754780bd72a4c32f7a169ca7826bc5ae167d4d690de114
- SHA512
  
  a625e88c40b7bc3637f44f965648a621445f9e13d7e75578ab70d88f67df7804e63dcb9820c792c1131f5d6d7303ae36f0af6213184e79a834864caea717d84a
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1