a298f928e722f76511594aa93ae895347c6d5ca72a80987a28af71b688b90e53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a298f928e722f76511594aa93ae895347c6d5ca72a80987a28af71b688b90e53
Size

2.2MB
Sample

231002-wd693sfa79
MD5

2645a6323b612bd3f06509294237b064
SHA1

0a5858f3e2f731d287fe72fa0c729a3e46603bbc
SHA256

a298f928e722f76511594aa93ae895347c6d5ca72a80987a28af71b688b90e53
SHA512

91883b893848df76092a6a604793870b198bf34ac7baa9aa5400e172e7dc994e7b7973461ea04a4b8321a327570755823bee8c6d58f7843417f955719bd9d0b0
SSDEEP

49152:ISdwoWLHPRnPZ4FaVze6F0ZNSt1C88M1VYpkEqXCYNEMQEo2nD:ISdfauqFF0ZNiAM1VXhrQr2nD

Score

7^/10

Malware Config

Targets

- Target
  
  a298f928e722f76511594aa93ae895347c6d5ca72a80987a28af71b688b90e53
- Size
  
  2.2MB
- MD5
  
  2645a6323b612bd3f06509294237b064
- SHA1
  
  0a5858f3e2f731d287fe72fa0c729a3e46603bbc
- SHA256
  
  a298f928e722f76511594aa93ae895347c6d5ca72a80987a28af71b688b90e53
- SHA512
  
  91883b893848df76092a6a604793870b198bf34ac7baa9aa5400e172e7dc994e7b7973461ea04a4b8321a327570755823bee8c6d58f7843417f955719bd9d0b0
- SSDEEP
  
  49152:ISdwoWLHPRnPZ4FaVze6F0ZNSt1C88M1VYpkEqXCYNEMQEo2nD:ISdfauqFF0ZNiAM1VXhrQr2nD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1