566a2bf78330a57fe914f8dffe985c52cb31a16af13dac22641602ea834a153e | Triage

Sharing

General

Target

566a2bf78330a57fe914f8dffe985c52cb31a16af13dac22641602ea834a153e
Size

208KB
Sample

230608-tcglxshc91
MD5

4e8d5bee5bdd92eaff637c2c8b1ac784
SHA1

13fb1c40c9fb0982963ad3024ab1672067945e68
SHA256

566a2bf78330a57fe914f8dffe985c52cb31a16af13dac22641602ea834a153e
SHA512

47eff50e10ea01d09831aef2a5bd28b6d89e8bbc46f9d54104fbdc8310bfd70f4b4413588f101eeec94ac76d2218cb3c69bb382464512504adce55e14ce494a4
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  566a2bf78330a57fe914f8dffe985c52cb31a16af13dac22641602ea834a153e
- Size
  
  208KB
- MD5
  
  4e8d5bee5bdd92eaff637c2c8b1ac784
- SHA1
  
  13fb1c40c9fb0982963ad3024ab1672067945e68
- SHA256
  
  566a2bf78330a57fe914f8dffe985c52cb31a16af13dac22641602ea834a153e
- SHA512
  
  47eff50e10ea01d09831aef2a5bd28b6d89e8bbc46f9d54104fbdc8310bfd70f4b4413588f101eeec94ac76d2218cb3c69bb382464512504adce55e14ce494a4
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1