3bb7eeaa851a558a484f265c8edf63a71e6f1bffd0b6a8e16bf42e52434eeef6 | Triage

Sharing

General

Target

3bb7eeaa851a558a484f265c8edf63a71e6f1bffd0b6a8e16bf42e52434eeef6
Size

13.1MB
Sample

231002-qm8xdacg24
MD5

7718d48b16df1d2f0c06a019cb0b50d6
SHA1

eeab4fbe47470d81330821529a8efd1ff45b0df5
SHA256

3bb7eeaa851a558a484f265c8edf63a71e6f1bffd0b6a8e16bf42e52434eeef6
SHA512

51e5b2a2c01bbeb795f0844b3f8c019de1d9ca452de6e153427a90c2d6ba961b0ee59ae7e9a6d743a3873c5b42bb43a02c6066435c41155afd08b62f007f760a
SSDEEP

196608:iblUhw7jRYx2z9NgtgqAcsFxgJv6muJWjslXgqsaXyM4KFWkzC+FC52E:iOh0xzv3qFF6mqgslX7XyYgkzC+MB

Score

7^/10

Malware Config

Targets

- Target
  
  3bb7eeaa851a558a484f265c8edf63a71e6f1bffd0b6a8e16bf42e52434eeef6
- Size
  
  13.1MB
- MD5
  
  7718d48b16df1d2f0c06a019cb0b50d6
- SHA1
  
  eeab4fbe47470d81330821529a8efd1ff45b0df5
- SHA256
  
  3bb7eeaa851a558a484f265c8edf63a71e6f1bffd0b6a8e16bf42e52434eeef6
- SHA512
  
  51e5b2a2c01bbeb795f0844b3f8c019de1d9ca452de6e153427a90c2d6ba961b0ee59ae7e9a6d743a3873c5b42bb43a02c6066435c41155afd08b62f007f760a
- SSDEEP
  
  196608:iblUhw7jRYx2z9NgtgqAcsFxgJv6muJWjslXgqsaXyM4KFWkzC+FC52E:iOh0xzv3qFF6mqgslX7XyYgkzC+MB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2