e1586fe2368208c3678604b743fa3d81f10ecb8476ea454d419158e91e09628d | Triage

Sharing

General

Target

e1586fe2368208c3678604b743fa3d81f10ecb8476ea454d419158e91e09628d
Size

2.1MB
Sample

231105-3mckdsee2t
MD5

fb9d9bba776e66717c69acdfe12b5b06
SHA1

45d01b6b0dea4e5a07f022180f541d1a97313a40
SHA256

e1586fe2368208c3678604b743fa3d81f10ecb8476ea454d419158e91e09628d
SHA512

b8e09fba031e83ec584e4f9e52b08897728a952fc322ad12c3a53c8b3d36821a31d9f322fc970bcad3cde73623a72e0882ec899f37edc83d1d6da31f6846e659
SSDEEP

24576:BubsnafAPyjJ43/G6z8IqqqZa04IS56zrYJqrnWpe6S8L/M:FIYGK8IqqqZa04IKiryqr16V4

Score

7^/10

Malware Config

Targets

- Target
  
  e1586fe2368208c3678604b743fa3d81f10ecb8476ea454d419158e91e09628d
- Size
  
  2.1MB
- MD5
  
  fb9d9bba776e66717c69acdfe12b5b06
- SHA1
  
  45d01b6b0dea4e5a07f022180f541d1a97313a40
- SHA256
  
  e1586fe2368208c3678604b743fa3d81f10ecb8476ea454d419158e91e09628d
- SHA512
  
  b8e09fba031e83ec584e4f9e52b08897728a952fc322ad12c3a53c8b3d36821a31d9f322fc970bcad3cde73623a72e0882ec899f37edc83d1d6da31f6846e659
- SSDEEP
  
  24576:BubsnafAPyjJ43/G6z8IqqqZa04IS56zrYJqrnWpe6S8L/M:FIYGK8IqqqZa04IKiryqr16V4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2