0b93c02d41b31d0bfdafa8424b2c20addc1e091f55039d691b947f625d1b8a4a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b93c02d41b31d0bfdafa8424b2c20addc1e091f55039d691b947f625d1b8a4a
Size

208KB
Sample

230608-k6evraea7w
MD5

3f59a15c3943e796ab09254440a53c42
SHA1

dead97bb405de7552aa01c42da53af59a11de82b
SHA256

0b93c02d41b31d0bfdafa8424b2c20addc1e091f55039d691b947f625d1b8a4a
SHA512

153753a2f90d25ea7270c7e0e6be6b33378509e6644642e0096fc32b46ff2d22f68605832ce4246d8159122ddf70d481a3c4bdba21d4218b9645484f3a61aee8
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  0b93c02d41b31d0bfdafa8424b2c20addc1e091f55039d691b947f625d1b8a4a
- Size
  
  208KB
- MD5
  
  3f59a15c3943e796ab09254440a53c42
- SHA1
  
  dead97bb405de7552aa01c42da53af59a11de82b
- SHA256
  
  0b93c02d41b31d0bfdafa8424b2c20addc1e091f55039d691b947f625d1b8a4a
- SHA512
  
  153753a2f90d25ea7270c7e0e6be6b33378509e6644642e0096fc32b46ff2d22f68605832ce4246d8159122ddf70d481a3c4bdba21d4218b9645484f3a61aee8
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1