f98b508204277a79f6eafac8ffde71c4e2fa6a760ff7edba567bd2f970aafeaa | Triage

Sharing

General

Target

f98b508204277a79f6eafac8ffde71c4e2fa6a760ff7edba567bd2f970aafeaa
Size

1.8MB
Sample

230721-j6he7sdd21
MD5

8b108f53e1a62aa003ed47fd2d82d5d0
SHA1

318f6d5aef52cb983b235f1ad9c3542e4f83b0a0
SHA256

f98b508204277a79f6eafac8ffde71c4e2fa6a760ff7edba567bd2f970aafeaa
SHA512

d04d6a55744a5e5c452d786544d199a9cc75380cec4ebe7ef7912c53fbf8c65fd54137b9ab6fe01f583f5e29c389b316670d28a359f099cede222a41ebfb12a2
SSDEEP

49152:2fWhNaBfJXAE3J5WMLp0R3K+pq3ocFg3DTytWITwlHseTtQxp3mYQw:2fWhNaBfKEqyp0R3KshcFg3P7tlHl5eF

Score

7^/10

Malware Config

Targets

- Target
  
  f98b508204277a79f6eafac8ffde71c4e2fa6a760ff7edba567bd2f970aafeaa
- Size
  
  1.8MB
- MD5
  
  8b108f53e1a62aa003ed47fd2d82d5d0
- SHA1
  
  318f6d5aef52cb983b235f1ad9c3542e4f83b0a0
- SHA256
  
  f98b508204277a79f6eafac8ffde71c4e2fa6a760ff7edba567bd2f970aafeaa
- SHA512
  
  d04d6a55744a5e5c452d786544d199a9cc75380cec4ebe7ef7912c53fbf8c65fd54137b9ab6fe01f583f5e29c389b316670d28a359f099cede222a41ebfb12a2
- SSDEEP
  
  49152:2fWhNaBfJXAE3J5WMLp0R3K+pq3ocFg3DTytWITwlHseTtQxp3mYQw:2fWhNaBfKEqyp0R3KshcFg3P7tlHl5eF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1