220eba3814424583653888b869601fdbb51c4430475e3ac663dd67ae15094422 | Triage

Sharing

General

Target

af6050e2c9dc44exeexeexeex.exe
Size

46KB
Sample

230709-r6y2ysea7v
MD5

af6050e2c9dc4413de3ec194caf175f8
SHA1

a1287635caa7e5405de7622c7be1d01882587789
SHA256

220eba3814424583653888b869601fdbb51c4430475e3ac663dd67ae15094422
SHA512

80a49b058ae8d675725dbb188b4c39dfbd6388f139d3ab0eea29da5fb022a34b01f2c614506c6c273c3d379896b15c4b12ec44427eb0320e06f6ca4c5ec685ba
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrnhch7:vj+jsMQMOtEvwDpj5HczerG9

Score

7^/10

Malware Config

Targets

- Target
  
  af6050e2c9dc44exeexeexeex.exe
- Size
  
  46KB
- MD5
  
  af6050e2c9dc4413de3ec194caf175f8
- SHA1
  
  a1287635caa7e5405de7622c7be1d01882587789
- SHA256
  
  220eba3814424583653888b869601fdbb51c4430475e3ac663dd67ae15094422
- SHA512
  
  80a49b058ae8d675725dbb188b4c39dfbd6388f139d3ab0eea29da5fb022a34b01f2c614506c6c273c3d379896b15c4b12ec44427eb0320e06f6ca4c5ec685ba
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrnhch7:vj+jsMQMOtEvwDpj5HczerG9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2