76f9a6ed5b6d8a466b8e08e029b933552ed5e029e4aedb9dadbc1bbd896deae9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01f6b20ab37433exeexeexeex.exe
Size

40KB
Sample

230705-rwjjhsee3v
MD5

01f6b20ab374331020943e1f090a2706
SHA1

3e02b08094c70979d31d982813fa750d9ee985fc
SHA256

76f9a6ed5b6d8a466b8e08e029b933552ed5e029e4aedb9dadbc1bbd896deae9
SHA512

c62e32d6bbc2ad92f4260c2e5e776c3eb49970e48bb88cee6220bf8afa0f94ec72868fb63ab9bae52c1a6e80311243b1a07f9e742076e14178cec6bf7b891328
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/GW:ZzFbxmLPWQMOtEvwDpj38lD/n

Score

7^/10

Malware Config

Targets

- Target
  
  01f6b20ab37433exeexeexeex.exe
- Size
  
  40KB
- MD5
  
  01f6b20ab374331020943e1f090a2706
- SHA1
  
  3e02b08094c70979d31d982813fa750d9ee985fc
- SHA256
  
  76f9a6ed5b6d8a466b8e08e029b933552ed5e029e4aedb9dadbc1bbd896deae9
- SHA512
  
  c62e32d6bbc2ad92f4260c2e5e776c3eb49970e48bb88cee6220bf8afa0f94ec72868fb63ab9bae52c1a6e80311243b1a07f9e742076e14178cec6bf7b891328
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/GW:ZzFbxmLPWQMOtEvwDpj38lD/n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2