83afc6aaa1a9277bd633878524b9724b9fd53392d7b66a17684b4a942686bcaa | Triage

Sharing

General

Target

83afc6aaa1a9277bd633878524b9724b9fd53392d7b66a17684b4a942686bcaa
Size

3.4MB
Sample

231010-zkp6xsab3y
MD5

9af9bdbf4122961480380fa09710b7b4
SHA1

d81c044d2369d9315e6fa9771a905e06db50893c
SHA256

83afc6aaa1a9277bd633878524b9724b9fd53392d7b66a17684b4a942686bcaa
SHA512

181f70f967843d916ec5a91ee6bd5cebab167041ea023d6ec243a7a465a90f0d7895568417bfb2679ee21d4711e0db82b0c6d6371567f54603f3aae11b55f990
SSDEEP

98304:fGdfOmZ+aJfY3WHR/itTWYqKp/eefDQ2xkNFCbT4dvu:oOluftH9Rkp/eefk5obT4E

Score

7^/10

Malware Config

Targets

- Target
  
  83afc6aaa1a9277bd633878524b9724b9fd53392d7b66a17684b4a942686bcaa
- Size
  
  3.4MB
- MD5
  
  9af9bdbf4122961480380fa09710b7b4
- SHA1
  
  d81c044d2369d9315e6fa9771a905e06db50893c
- SHA256
  
  83afc6aaa1a9277bd633878524b9724b9fd53392d7b66a17684b4a942686bcaa
- SHA512
  
  181f70f967843d916ec5a91ee6bd5cebab167041ea023d6ec243a7a465a90f0d7895568417bfb2679ee21d4711e0db82b0c6d6371567f54603f3aae11b55f990
- SSDEEP
  
  98304:fGdfOmZ+aJfY3WHR/itTWYqKp/eefDQ2xkNFCbT4dvu:oOluftH9Rkp/eefk5obT4E
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2