4b772d9a73b90fa9d2b3b2465d67f28d349f7af27707d2b8259224fc070ca743 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4b772d9a73b90fa9d2b3b2465d67f28d349f7af27707d2b8259224fc070ca743
Size

208KB
Sample

230608-lm22lsdg35
MD5

7459331d7ec0d2560de370fe28f444b7
SHA1

867d75582bb80c73f45f37d18f60c75baa8ae986
SHA256

4b772d9a73b90fa9d2b3b2465d67f28d349f7af27707d2b8259224fc070ca743
SHA512

6529298ca5c4c595cbf2893e945c05542fc5f6dac769065a2aac9ea23c4dba78b3b0e89bf5802ace55e375f7d33f7f126a96fbb7f213a6decbac4e8e9f50d036
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  4b772d9a73b90fa9d2b3b2465d67f28d349f7af27707d2b8259224fc070ca743
- Size
  
  208KB
- MD5
  
  7459331d7ec0d2560de370fe28f444b7
- SHA1
  
  867d75582bb80c73f45f37d18f60c75baa8ae986
- SHA256
  
  4b772d9a73b90fa9d2b3b2465d67f28d349f7af27707d2b8259224fc070ca743
- SHA512
  
  6529298ca5c4c595cbf2893e945c05542fc5f6dac769065a2aac9ea23c4dba78b3b0e89bf5802ace55e375f7d33f7f126a96fbb7f213a6decbac4e8e9f50d036
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1