b41101bfd27f9656523c4a5772253287bb66e159d46f83f093cae1d57177f077 | Triage

Sharing

General

Target

b41101bfd27f9656523c4a5772253287bb66e159d46f83f093cae1d57177f077
Size

493KB
Sample

230613-d1xeaafb5y
MD5

a066bd1a442fa3ce477698fdac265a82
SHA1

0bd235fdf4c5b53f9beb2ab5d8bad24e47b14d6c
SHA256

b41101bfd27f9656523c4a5772253287bb66e159d46f83f093cae1d57177f077
SHA512

3a2886331a271be62e886b43e537520961020f5b9416f07dd6e0800d37901451cafc79b2e15ca1074697a77cb946d3ec56840f875fe99399beca82f0a75c77f7
SSDEEP

12288:GgZXEAO/BUdG3gVdt7KsX+tZk0F+rct6ag2I29t6hWfAIi:GgZXoZUTVdt7Kzk0FUXag2INz

Score

7^/10

Malware Config

Targets

- Target
  
  b41101bfd27f9656523c4a5772253287bb66e159d46f83f093cae1d57177f077
- Size
  
  493KB
- MD5
  
  a066bd1a442fa3ce477698fdac265a82
- SHA1
  
  0bd235fdf4c5b53f9beb2ab5d8bad24e47b14d6c
- SHA256
  
  b41101bfd27f9656523c4a5772253287bb66e159d46f83f093cae1d57177f077
- SHA512
  
  3a2886331a271be62e886b43e537520961020f5b9416f07dd6e0800d37901451cafc79b2e15ca1074697a77cb946d3ec56840f875fe99399beca82f0a75c77f7
- SSDEEP
  
  12288:GgZXEAO/BUdG3gVdt7KsX+tZk0F+rct6ag2I29t6hWfAIi:GgZXoZUTVdt7Kzk0FUXag2INz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2