582150ba4379122253eeb2a1a7ace968394ee7e566f0d0d794f6ba7d937037d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

data64_6.exe
Size

1.9MB
Sample

230630-ppjvlabd66
MD5

182baf929b35d5d63747617d2007c77a
SHA1

0dfe91ab115ed862b48b1e4006a44e86c33eb772
SHA256

582150ba4379122253eeb2a1a7ace968394ee7e566f0d0d794f6ba7d937037d5
SHA512

55bab5bbec04389f94f297843f7fcb4d71173c8f1f6e5007b6a2eaf5d937f50f9b2d9f61f983c86b20d342a4a4cb6691e23c3a0322575c826d23b55ee61a19f7
SSDEEP

49152:084cMQyRcf9HmjMbS4b08WrjXM6pzM6MGaU9PPIbnllyuA:6cMQyW9GX4MXBGyZPynXyB

Score

7^/10

Malware Config

Targets

- Target
  
  data64_6.exe
- Size
  
  1.9MB
- MD5
  
  182baf929b35d5d63747617d2007c77a
- SHA1
  
  0dfe91ab115ed862b48b1e4006a44e86c33eb772
- SHA256
  
  582150ba4379122253eeb2a1a7ace968394ee7e566f0d0d794f6ba7d937037d5
- SHA512
  
  55bab5bbec04389f94f297843f7fcb4d71173c8f1f6e5007b6a2eaf5d937f50f9b2d9f61f983c86b20d342a4a4cb6691e23c3a0322575c826d23b55ee61a19f7
- SSDEEP
  
  49152:084cMQyRcf9HmjMbS4b08WrjXM6pzM6MGaU9PPIbnllyuA:6cMQyW9GX4MXBGyZPynXyB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2