977c5c1258c178e8b531fb4a9af68baab3b1c0255273be9e809e2eb197276c45 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Desktop227.exe
Size

9.4MB
Sample

230614-pzbxqshb58
MD5

02348c4b55858ddbec3361b1b7475844
SHA1

6a7433553812965a526d048e705c9d5a793a89a6
SHA256

977c5c1258c178e8b531fb4a9af68baab3b1c0255273be9e809e2eb197276c45
SHA512

eb25175e9182fe5e6cb0c928c77426c1edc6262a6ea7d9beb9b8d66617ae2dadd3081821aea3759d8a4041c54250d357d2d9a1b8e63403ec7dfdbaad62fb6afc
SSDEEP

196608:efE81+cKrKKlCNYelY1+5y0jIMSCYIwupQgu0sEHWOly2N3t4JdheiJTn4TGCTlc:efE8XsoNY1+59jItCMuagrsgAKmbzcGt

Score

8^/10

Malware Config

Targets

- Target
  
  Desktop227.exe
- Size
  
  9.4MB
- MD5
  
  02348c4b55858ddbec3361b1b7475844
- SHA1
  
  6a7433553812965a526d048e705c9d5a793a89a6
- SHA256
  
  977c5c1258c178e8b531fb4a9af68baab3b1c0255273be9e809e2eb197276c45
- SHA512
  
  eb25175e9182fe5e6cb0c928c77426c1edc6262a6ea7d9beb9b8d66617ae2dadd3081821aea3759d8a4041c54250d357d2d9a1b8e63403ec7dfdbaad62fb6afc
- SSDEEP
  
  196608:efE81+cKrKKlCNYelY1+5y0jIMSCYIwupQgu0sEHWOly2N3t4JdheiJTn4TGCTlc:efE8XsoNY1+59jItCMuagrsgAKmbzcGt
Score

8^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2