96450148c157c39cc89e0e2fe6c90c32fad5631d271499b47b578c285eb81186 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

96450148c157c39cc89e0e2fe6c90c32fad5631d271499b47b578c285eb81186
Size

206KB
Sample

230608-atgtgaac5t
MD5

1493be32c8093f37f6100520bd9b32f5
SHA1

1a0671573e79aef68e87b1d35ca54ec1bae3b76b
SHA256

96450148c157c39cc89e0e2fe6c90c32fad5631d271499b47b578c285eb81186
SHA512

af2ae34bb380dabdd02ef3c1f4022668576ab20ad5a59b34d8b5267480b86256576d0b668d765ea616bbd91c29a3773e222b0c1d122da16c7abffd715c2da4a3
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  96450148c157c39cc89e0e2fe6c90c32fad5631d271499b47b578c285eb81186
- Size
  
  206KB
- MD5
  
  1493be32c8093f37f6100520bd9b32f5
- SHA1
  
  1a0671573e79aef68e87b1d35ca54ec1bae3b76b
- SHA256
  
  96450148c157c39cc89e0e2fe6c90c32fad5631d271499b47b578c285eb81186
- SHA512
  
  af2ae34bb380dabdd02ef3c1f4022668576ab20ad5a59b34d8b5267480b86256576d0b668d765ea616bbd91c29a3773e222b0c1d122da16c7abffd715c2da4a3
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1