6f6077fd419345d0cadec8ec5ddf13fe43ecc6faf492a43a244363bb005020ee | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b0b457433352200c9269a12a1e696e10
Size

14KB
Sample

231219-1yv5rsghf7
MD5

b0b457433352200c9269a12a1e696e10
SHA1

43efa9a23d97b896d0775329ebcb1bcc4b7f4f51
SHA256

6f6077fd419345d0cadec8ec5ddf13fe43ecc6faf492a43a244363bb005020ee
SHA512

4cefd36a436ec8a88098d6d8cc9a0794eabb0bd3a4d1b61494f7ec410a959bb52e3670ab53a81e2c009ee7cb02ff381d95a99da5a1d56e90faf31995dc260a0a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhL:hDXWipuE+K3/SSHgxF

Score

7^/10

Malware Config

Targets

- Target
  
  b0b457433352200c9269a12a1e696e10
- Size
  
  14KB
- MD5
  
  b0b457433352200c9269a12a1e696e10
- SHA1
  
  43efa9a23d97b896d0775329ebcb1bcc4b7f4f51
- SHA256
  
  6f6077fd419345d0cadec8ec5ddf13fe43ecc6faf492a43a244363bb005020ee
- SHA512
  
  4cefd36a436ec8a88098d6d8cc9a0794eabb0bd3a4d1b61494f7ec410a959bb52e3670ab53a81e2c009ee7cb02ff381d95a99da5a1d56e90faf31995dc260a0a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhL:hDXWipuE+K3/SSHgxF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2