908d227b621909299287eff8ac6277727917f021b9ec649041fa9e1444e5c04b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9c4963ae29874exeexeexeex.exe
Size

101KB
Sample

230711-t2d74ahg89
MD5

f9c4963ae2987460ff33231e545b08f1
SHA1

ee6b2b5b69910e3989e56e724e284db6915e807c
SHA256

908d227b621909299287eff8ac6277727917f021b9ec649041fa9e1444e5c04b
SHA512

0fd1a4470b4c469adb333c76d2ecdf1d57a71f47b58ebe8f74ccab70aa204f302d5ac280721432ee841d9c130bc5810793f4c3b4fbda267c1979b4a32f256bc7
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWCCyDFkWxhe0INO3:xj+VGMOtEvwDpjubwQEIie8Fkf0h3

Score

7^/10

Malware Config

Targets

- Target
  
  f9c4963ae29874exeexeexeex.exe
- Size
  
  101KB
- MD5
  
  f9c4963ae2987460ff33231e545b08f1
- SHA1
  
  ee6b2b5b69910e3989e56e724e284db6915e807c
- SHA256
  
  908d227b621909299287eff8ac6277727917f021b9ec649041fa9e1444e5c04b
- SHA512
  
  0fd1a4470b4c469adb333c76d2ecdf1d57a71f47b58ebe8f74ccab70aa204f302d5ac280721432ee841d9c130bc5810793f4c3b4fbda267c1979b4a32f256bc7
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWCCyDFkWxhe0INO3:xj+VGMOtEvwDpjubwQEIie8Fkf0h3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2