ec33c2d36f9fc637f0b8e5a40482a364014006ceb63d194d7f4347020542d623 | Triage

Sharing

General

Target

ec33c2d36f9fc637f0b8e5a40482a364014006ceb63d194d7f4347020542d623
Size

10.5MB
Sample

230919-aze7tsdf7z
MD5

833e048918e87b0a6a47182e0af0ffc0
SHA1

b90efbe26c8c90c832309f96afee8652ffe24ef8
SHA256

ec33c2d36f9fc637f0b8e5a40482a364014006ceb63d194d7f4347020542d623
SHA512

7746618b217cb13b7c119d06c9fa604265c3be332017413c32484b91963a539e2a98f5490d79f8357771cfe87fa9f65a38b3df414f5d8e52e5940568286f0862
SSDEEP

196608:hIWM3k85YqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOo75:RM3k85D4F3e+biSDcQwM8uDup

Score

7^/10

Malware Config

Targets

- Target
  
  ec33c2d36f9fc637f0b8e5a40482a364014006ceb63d194d7f4347020542d623
- Size
  
  10.5MB
- MD5
  
  833e048918e87b0a6a47182e0af0ffc0
- SHA1
  
  b90efbe26c8c90c832309f96afee8652ffe24ef8
- SHA256
  
  ec33c2d36f9fc637f0b8e5a40482a364014006ceb63d194d7f4347020542d623
- SHA512
  
  7746618b217cb13b7c119d06c9fa604265c3be332017413c32484b91963a539e2a98f5490d79f8357771cfe87fa9f65a38b3df414f5d8e52e5940568286f0862
- SSDEEP
  
  196608:hIWM3k85YqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOo75:RM3k85D4F3e+biSDcQwM8uDup
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2