220488c700a3fc1c45bcbe64e6f72b73875ec1db867d30b2077a5bdd6a9c7e76 | Triage

Sharing

General

Target

220488c700a3fc1c45bcbe64e6f72b73875ec1db867d30b2077a5bdd6a9c7e76
Size

2.6MB
Sample

231004-xhma5sgb36
MD5

1c333c2e64e341bad66b07c74884814c
SHA1

e312c432e1b61c61ca2e4248409e80cedc227eca
SHA256

220488c700a3fc1c45bcbe64e6f72b73875ec1db867d30b2077a5bdd6a9c7e76
SHA512

4ac2a406b7f3c9b67b3130b3b211ddd38ebef851595e2e2ee6383a967f280d55848b4d6971d8f73ce0e7e30ac57772f54dc5df4d9570bc0d80491a1895c169f3
SSDEEP

49152:ISSXPq3gQTLSlI/4tQsasZDGukWV5SvuEIZGouXUlA/c/waxsBd0+XqhiP:IS1NTCvQBsSu+vZkSysP0KqhM

Score

7^/10

Malware Config

Targets

- Target
  
  220488c700a3fc1c45bcbe64e6f72b73875ec1db867d30b2077a5bdd6a9c7e76
- Size
  
  2.6MB
- MD5
  
  1c333c2e64e341bad66b07c74884814c
- SHA1
  
  e312c432e1b61c61ca2e4248409e80cedc227eca
- SHA256
  
  220488c700a3fc1c45bcbe64e6f72b73875ec1db867d30b2077a5bdd6a9c7e76
- SHA512
  
  4ac2a406b7f3c9b67b3130b3b211ddd38ebef851595e2e2ee6383a967f280d55848b4d6971d8f73ce0e7e30ac57772f54dc5df4d9570bc0d80491a1895c169f3
- SSDEEP
  
  49152:ISSXPq3gQTLSlI/4tQsasZDGukWV5SvuEIZGouXUlA/c/waxsBd0+XqhiP:IS1NTCvQBsSu+vZkSysP0KqhM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1