8ab39e59baf8bf7f1ee737ee943baae0dee6b470c84cf67bd4faa67bc4ba7561 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

file
Size

2.8MB
Sample

231210-yh6kfscdd2
MD5

f26bdcfbb2d7175ffdc12d0933893c26
SHA1

f909df155dc64048f0112da4c7f24279a06b5de2
SHA256

8ab39e59baf8bf7f1ee737ee943baae0dee6b470c84cf67bd4faa67bc4ba7561
SHA512

0129a1fe8b74962bf0bd38326267a4b43c369e774de22778a0380b49219722dabc6945e11a7e68709d32f2f9339eb8885afe214dca3e17647b3000944f554439
SSDEEP

49152:UJGiO02/Exjiuj2ogGrFX3/wA7puQyL7wufTqdEXvBoYJ3ewA3cxXj:UIiO//ExjiO2ogGBXPwA7p7yyQvaYU3a

Score

7^/10

Malware Config

Targets

- Target
  
  file
- Size
  
  2.8MB
- MD5
  
  f26bdcfbb2d7175ffdc12d0933893c26
- SHA1
  
  f909df155dc64048f0112da4c7f24279a06b5de2
- SHA256
  
  8ab39e59baf8bf7f1ee737ee943baae0dee6b470c84cf67bd4faa67bc4ba7561
- SHA512
  
  0129a1fe8b74962bf0bd38326267a4b43c369e774de22778a0380b49219722dabc6945e11a7e68709d32f2f9339eb8885afe214dca3e17647b3000944f554439
- SSDEEP
  
  49152:UJGiO02/Exjiuj2ogGrFX3/wA7puQyL7wufTqdEXvBoYJ3ewA3cxXj:UIiO//ExjiO2ogGBXPwA7p7yyQvaYU3a
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2