ba83e6470fd4e08ef22d5b3f06e2de9186ae57c3aba8f11526220ce8697aae3f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cb6c2897b82b5aexeexeexeex.exe
Size

91KB
Sample

230710-sjwtrabd96
MD5

cb6c2897b82b5a2a8316d86546ef936a
SHA1

68201fb354d0b2a189ed73dd0deccb24fd09629e
SHA256

ba83e6470fd4e08ef22d5b3f06e2de9186ae57c3aba8f11526220ce8697aae3f
SHA512

41342edbcbd342aa9efccb4a5381ac5f2c726bc8ee1164c104c16d9cf9c9178080327a7b409f5d6bd1641a34371b6d5fc5b327e2a3583b0d4d0afff3c2815b5e
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWLmt:V6a+pOtEvwDpjtH

Score

7^/10

Malware Config

Targets

- Target
  
  cb6c2897b82b5aexeexeexeex.exe
- Size
  
  91KB
- MD5
  
  cb6c2897b82b5a2a8316d86546ef936a
- SHA1
  
  68201fb354d0b2a189ed73dd0deccb24fd09629e
- SHA256
  
  ba83e6470fd4e08ef22d5b3f06e2de9186ae57c3aba8f11526220ce8697aae3f
- SHA512
  
  41342edbcbd342aa9efccb4a5381ac5f2c726bc8ee1164c104c16d9cf9c9178080327a7b409f5d6bd1641a34371b6d5fc5b327e2a3583b0d4d0afff3c2815b5e
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWLmt:V6a+pOtEvwDpjtH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2