b3c0486af0add28d3436e6df9a92fae7a612ee1dcc764b0d7de66a522c21f594 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3c0486af0add28d3436e6df9a92fae7a612ee1dcc764b0d7de66a522c21f594
Size

2.7MB
Sample

230830-wpwygshe65
MD5

d28b163d61f8a28377d7dfce7b0b4e88
SHA1

df788bbd302399484458c33c6ec25f70068cb256
SHA256

b3c0486af0add28d3436e6df9a92fae7a612ee1dcc764b0d7de66a522c21f594
SHA512

82854e73791c6d5a16e163979b3a8af969ca295a6955f8a1f21b3ba049d5a38ee012a3039a695f93b95cdeb8d4437b3f26a6b221049723f1961d2ebfbd3fbd56
SSDEEP

49152:8cbi6YX6EvgR5jZz9HagqSefYgYic8ZciYg/sTHBHEVI9xsBOjcaAoPhysui82pM:8cb++bjZznpeggYicGc6sTVE+9xsBOjm

Score

7^/10

Malware Config

Targets

- Target
  
  b3c0486af0add28d3436e6df9a92fae7a612ee1dcc764b0d7de66a522c21f594
- Size
  
  2.7MB
- MD5
  
  d28b163d61f8a28377d7dfce7b0b4e88
- SHA1
  
  df788bbd302399484458c33c6ec25f70068cb256
- SHA256
  
  b3c0486af0add28d3436e6df9a92fae7a612ee1dcc764b0d7de66a522c21f594
- SHA512
  
  82854e73791c6d5a16e163979b3a8af969ca295a6955f8a1f21b3ba049d5a38ee012a3039a695f93b95cdeb8d4437b3f26a6b221049723f1961d2ebfbd3fbd56
- SSDEEP
  
  49152:8cbi6YX6EvgR5jZz9HagqSefYgYic8ZciYg/sTHBHEVI9xsBOjcaAoPhysui82pM:8cb++bjZznpeggYicGc6sTVE+9xsBOjm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1