86a3f946989575ccc170d16fc86c8e0c41e52222d41e18b0f12d4aeece34f12e | Triage

Sharing

General

Target

86a3f946989575ccc170d16fc86c8e0c41e52222d41e18b0f12d4aeece34f12e
Size

208KB
Sample

230608-k3x7xsea5y
MD5

7c5360df2cb080c4272110886b13dc03
SHA1

cbdc9fa69c6dbfc250e878b8bb6413387dc3f9dc
SHA256

86a3f946989575ccc170d16fc86c8e0c41e52222d41e18b0f12d4aeece34f12e
SHA512

a2938bdd2ff7fd0d35dcda4a47799b261dc111ec5ac0133b93c0b6891d6a6e8322cf63e156bbe1fdecc74d5d343e285326b7507e9a1930ed714594e0db1d9938
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  86a3f946989575ccc170d16fc86c8e0c41e52222d41e18b0f12d4aeece34f12e
- Size
  
  208KB
- MD5
  
  7c5360df2cb080c4272110886b13dc03
- SHA1
  
  cbdc9fa69c6dbfc250e878b8bb6413387dc3f9dc
- SHA256
  
  86a3f946989575ccc170d16fc86c8e0c41e52222d41e18b0f12d4aeece34f12e
- SHA512
  
  a2938bdd2ff7fd0d35dcda4a47799b261dc111ec5ac0133b93c0b6891d6a6e8322cf63e156bbe1fdecc74d5d343e285326b7507e9a1930ed714594e0db1d9938
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1