496b5efb64ffd06b85b76f9a9af32014fc2ed989426b22698bb5e858e0828d28 | Triage

Sharing

General

Target

496b5efb64ffd06b85b76f9a9af32014fc2ed989426b22698bb5e858e0828d28
Size

207KB
Sample

230608-dpw95sbd52
MD5

002fd70c6d5055224b90b38da9c57582
SHA1

121f8199f5bb5278193fcc582fdf489cb82abbfb
SHA256

496b5efb64ffd06b85b76f9a9af32014fc2ed989426b22698bb5e858e0828d28
SHA512

4c33fe239ab77fa8d873025e0729166b6958bb1d8bf115fd696bbd6d68a9065c63b6113b728d2e950b905f1b4631bf2597b3807c5ca6d5ff272874e99e33929e
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  496b5efb64ffd06b85b76f9a9af32014fc2ed989426b22698bb5e858e0828d28
- Size
  
  207KB
- MD5
  
  002fd70c6d5055224b90b38da9c57582
- SHA1
  
  121f8199f5bb5278193fcc582fdf489cb82abbfb
- SHA256
  
  496b5efb64ffd06b85b76f9a9af32014fc2ed989426b22698bb5e858e0828d28
- SHA512
  
  4c33fe239ab77fa8d873025e0729166b6958bb1d8bf115fd696bbd6d68a9065c63b6113b728d2e950b905f1b4631bf2597b3807c5ca6d5ff272874e99e33929e
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1