6eb7b06e15650f8f23ab06300ce1d108f4d7ed4f60b570b390bbcbab64e1345c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6eb7b06e15650f8f23ab06300ce1d108f4d7ed4f60b570b390bbcbab64e1345c
Size

208KB
Sample

230608-sqqlbahb3x
MD5

c5cb179f51a540177fbbf49fad3693ce
SHA1

7fbc105712b7897a625301f9857404ea29eb4d09
SHA256

6eb7b06e15650f8f23ab06300ce1d108f4d7ed4f60b570b390bbcbab64e1345c
SHA512

cae5bf656a3a9de35f105484c72e82b5404096e440ac3f14db9a548ecc33c0df50c766ec60af3ebd83e129eb5dd171f845a03514e593003a7f239d64323a9afc
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  6eb7b06e15650f8f23ab06300ce1d108f4d7ed4f60b570b390bbcbab64e1345c
- Size
  
  208KB
- MD5
  
  c5cb179f51a540177fbbf49fad3693ce
- SHA1
  
  7fbc105712b7897a625301f9857404ea29eb4d09
- SHA256
  
  6eb7b06e15650f8f23ab06300ce1d108f4d7ed4f60b570b390bbcbab64e1345c
- SHA512
  
  cae5bf656a3a9de35f105484c72e82b5404096e440ac3f14db9a548ecc33c0df50c766ec60af3ebd83e129eb5dd171f845a03514e593003a7f239d64323a9afc
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1