15fcacc26911d1a410ca39482f474a432c6c288464957cf030de2051175d7fd3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15fcacc26911d1a410ca39482f474a432c6c288464957cf030de2051175d7fd3
Size

208KB
Sample

230608-qatxpafe56
MD5

8a8503975f559ba5af876ce0a3053ae8
SHA1

cbd0271208d2b1c573770c3844b7855476df74a3
SHA256

15fcacc26911d1a410ca39482f474a432c6c288464957cf030de2051175d7fd3
SHA512

aec2e0f6b6bcdbfe28b083c2458a4972bce31ea19d9db8940bd7d9c5f5c68adff6af2b810c029ade3aa8cfb16285df73c82e2a82bcb9a28544e98a52c0c0cd5f
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  15fcacc26911d1a410ca39482f474a432c6c288464957cf030de2051175d7fd3
- Size
  
  208KB
- MD5
  
  8a8503975f559ba5af876ce0a3053ae8
- SHA1
  
  cbd0271208d2b1c573770c3844b7855476df74a3
- SHA256
  
  15fcacc26911d1a410ca39482f474a432c6c288464957cf030de2051175d7fd3
- SHA512
  
  aec2e0f6b6bcdbfe28b083c2458a4972bce31ea19d9db8940bd7d9c5f5c68adff6af2b810c029ade3aa8cfb16285df73c82e2a82bcb9a28544e98a52c0c0cd5f
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1