fabcaa252994dce4f96adabfb335f02a7e17b6c8f998230659026e0dab399a7d | Triage

Sharing

General

Target

fabcaa252994dce4f96adabfb335f02a7e17b6c8f998230659026e0dab399a7d
Size

1.6MB
Sample

231012-tryhzsah6w
MD5

d6dc656fb6c093960fd3589c4ab33432
SHA1

df8297f14a69cd3b26e39e8fd808b2aaf452b6a2
SHA256

fabcaa252994dce4f96adabfb335f02a7e17b6c8f998230659026e0dab399a7d
SHA512

9d5b13d94913d60aefba32a32bb5b349849d49246b6eceb38d2a8a8fbd01f2ac5961ae20d1c486b9f27dd37360e64bb44e5c55783187909507be569ae12ce689
SSDEEP

49152:qDkUjjdvSaiQX1F+lY1SERJQ1BSl0xyLlIU:q4UFKISiQsGW9

Score

7^/10

Malware Config

Targets

- Target
  
  fabcaa252994dce4f96adabfb335f02a7e17b6c8f998230659026e0dab399a7d
- Size
  
  1.6MB
- MD5
  
  d6dc656fb6c093960fd3589c4ab33432
- SHA1
  
  df8297f14a69cd3b26e39e8fd808b2aaf452b6a2
- SHA256
  
  fabcaa252994dce4f96adabfb335f02a7e17b6c8f998230659026e0dab399a7d
- SHA512
  
  9d5b13d94913d60aefba32a32bb5b349849d49246b6eceb38d2a8a8fbd01f2ac5961ae20d1c486b9f27dd37360e64bb44e5c55783187909507be569ae12ce689
- SSDEEP
  
  49152:qDkUjjdvSaiQX1F+lY1SERJQ1BSl0xyLlIU:q4UFKISiQsGW9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2