c96be7f4a4b6f672faaeb87391b04632ed21be75d8038d467047893e580cef87 | Triage

Sharing

General

Target

6b17986b733cf4exeexeexeex.exe
Size

77KB
Sample

230708-l1zteaea38
MD5

6b17986b733cf4d3ea0f39c951a747b9
SHA1

494d61ff17cfbb5ce4d9486f547941a299c6700f
SHA256

c96be7f4a4b6f672faaeb87391b04632ed21be75d8038d467047893e580cef87
SHA512

355a2dbe611e07ceaa9b6bcfd114de371b027c76f009933755826d09fff80508fd1d83c9f060fdf51c0d8eedb021f0d0425a8b0826d8b21666eda48509c921b7
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yJYbf:V6QFElP6n+gMQMOtEvwDpjyaLccVNlCL

Score

7^/10

Malware Config

Targets

- Target
  
  6b17986b733cf4exeexeexeex.exe
- Size
  
  77KB
- MD5
  
  6b17986b733cf4d3ea0f39c951a747b9
- SHA1
  
  494d61ff17cfbb5ce4d9486f547941a299c6700f
- SHA256
  
  c96be7f4a4b6f672faaeb87391b04632ed21be75d8038d467047893e580cef87
- SHA512
  
  355a2dbe611e07ceaa9b6bcfd114de371b027c76f009933755826d09fff80508fd1d83c9f060fdf51c0d8eedb021f0d0425a8b0826d8b21666eda48509c921b7
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yJYbf:V6QFElP6n+gMQMOtEvwDpjyaLccVNlCL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2