3fb6abdd7e92603aa9fea2388954f28066f93421ecb4b7718e30c35d41ccf153 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3fb6abdd7e92603aa9fea2388954f28066f93421ecb4b7718e30c35d41ccf153
Size

3.6MB
Sample

231011-2eh7jage4z
MD5

c04d362ed6cd26df59bf926e19fba376
SHA1

226b1948f77977f6419108d254ddb4f56c438ea7
SHA256

3fb6abdd7e92603aa9fea2388954f28066f93421ecb4b7718e30c35d41ccf153
SHA512

f548b5ecfb4e4b6742c6d8fe55846d484579d2b496d6a83a7d681f2e49bd9d177e0f7b283a8f3c20c82d54781a97eb457128d150f4f66d69dfdda952db6af280
SSDEEP

98304:mYk4b1axvwTVO/A9aJwMo83k+A9QUKcDDjyGQs9FLOAkGkzdnEVomFHKnPFU:I18s/Va/6UKcDDGGQ6FLOyomFHKnPO

Score

7^/10

Malware Config

Targets

- Target
  
  3fb6abdd7e92603aa9fea2388954f28066f93421ecb4b7718e30c35d41ccf153
- Size
  
  3.6MB
- MD5
  
  c04d362ed6cd26df59bf926e19fba376
- SHA1
  
  226b1948f77977f6419108d254ddb4f56c438ea7
- SHA256
  
  3fb6abdd7e92603aa9fea2388954f28066f93421ecb4b7718e30c35d41ccf153
- SHA512
  
  f548b5ecfb4e4b6742c6d8fe55846d484579d2b496d6a83a7d681f2e49bd9d177e0f7b283a8f3c20c82d54781a97eb457128d150f4f66d69dfdda952db6af280
- SSDEEP
  
  98304:mYk4b1axvwTVO/A9aJwMo83k+A9QUKcDDjyGQs9FLOAkGkzdnEVomFHKnPFU:I18s/Va/6UKcDDGGQ6FLOyomFHKnPO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2