ecb77b0c6143cde0da4d57750339be2f772ada0038f14ed1702471070c21181c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ecb77b0c6143cde0da4d57750339be2f772ada0038f14ed1702471070c21181c
Size

208KB
Sample

230608-syztysge33
MD5

dd89529a84854a0ea42c7f504f47d2d4
SHA1

35dfaebdb06748f841f3d2e892cfa8d9f108d7fc
SHA256

ecb77b0c6143cde0da4d57750339be2f772ada0038f14ed1702471070c21181c
SHA512

d08f2fee83df18c36fce76ca973a4850974b64fb495554e18122032a54110b9d475b062717325e7db4055437eee3e10aa6429c7d4875afd4a143f1358aaabb84
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  ecb77b0c6143cde0da4d57750339be2f772ada0038f14ed1702471070c21181c
- Size
  
  208KB
- MD5
  
  dd89529a84854a0ea42c7f504f47d2d4
- SHA1
  
  35dfaebdb06748f841f3d2e892cfa8d9f108d7fc
- SHA256
  
  ecb77b0c6143cde0da4d57750339be2f772ada0038f14ed1702471070c21181c
- SHA512
  
  d08f2fee83df18c36fce76ca973a4850974b64fb495554e18122032a54110b9d475b062717325e7db4055437eee3e10aa6429c7d4875afd4a143f1358aaabb84
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1