2319db195c50ece7bc863689a099ac0dca0cd2d5060605089d9f3c4cc661ae00 | Triage

Sharing

General

Target

2319db195c50ece7bc863689a099ac0dca0cd2d5060605089d9f3c4cc661ae00
Size

207KB
Sample

230608-bl7klaac29
MD5

d0fd4c61fa53e4bc262f79773cb415c6
SHA1

17dac0f2944c435542b74750376c74c8a79815ae
SHA256

2319db195c50ece7bc863689a099ac0dca0cd2d5060605089d9f3c4cc661ae00
SHA512

33fd7801196639ec73a0b39b3f44eb6652fe1992ebae7be50c8deefca9ee7faf8f60ad3a2b76e24f0b975cc4e076d770548fcf9c8299dd776d4786a7d74fdb26
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  2319db195c50ece7bc863689a099ac0dca0cd2d5060605089d9f3c4cc661ae00
- Size
  
  207KB
- MD5
  
  d0fd4c61fa53e4bc262f79773cb415c6
- SHA1
  
  17dac0f2944c435542b74750376c74c8a79815ae
- SHA256
  
  2319db195c50ece7bc863689a099ac0dca0cd2d5060605089d9f3c4cc661ae00
- SHA512
  
  33fd7801196639ec73a0b39b3f44eb6652fe1992ebae7be50c8deefca9ee7faf8f60ad3a2b76e24f0b975cc4e076d770548fcf9c8299dd776d4786a7d74fdb26
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1