dec8d2cc209140398bf1d7ca430b7ee1a5cbbd992f622f17a08dac6eac23857a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17e3d1d16954e905f9b5ef94a10e706f.bin
Size

52.1MB
Sample

231128-brqh9seb59
MD5

17e3d1d16954e905f9b5ef94a10e706f
SHA1

e31216e8ec9685db981d0ff315510ceb7b71bdb6
SHA256

dec8d2cc209140398bf1d7ca430b7ee1a5cbbd992f622f17a08dac6eac23857a
SHA512

1a31d752368d70ea3ceb92569d96b05c1a1bb4ac1174976312186d7317a1420a708ae6fedbdbfd03a3ab9a2a1fef2e60139053c52a434f1fb971f10d2ceb193e
SSDEEP

196608:CgyZBSgvRUv8KWAkInXxjASnJbvPNzjqY3PxgCJgIvNuNe14sW4cGDT+drS:uB9i8mxjASnxvPdBPxJgWkeysfxDT+o

Score

7^/10

Malware Config

Targets

- Target
  
  17e3d1d16954e905f9b5ef94a10e706f.bin
- Size
  
  52.1MB
- MD5
  
  17e3d1d16954e905f9b5ef94a10e706f
- SHA1
  
  e31216e8ec9685db981d0ff315510ceb7b71bdb6
- SHA256
  
  dec8d2cc209140398bf1d7ca430b7ee1a5cbbd992f622f17a08dac6eac23857a
- SHA512
  
  1a31d752368d70ea3ceb92569d96b05c1a1bb4ac1174976312186d7317a1420a708ae6fedbdbfd03a3ab9a2a1fef2e60139053c52a434f1fb971f10d2ceb193e
- SSDEEP
  
  196608:CgyZBSgvRUv8KWAkInXxjASnJbvPNzjqY3PxgCJgIvNuNe14sW4cGDT+drS:uB9i8mxjASnxvPdBPxJgWkeysfxDT+o
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2