ef0c9f16b25112683141dfb647fe35ff5889a432070769fb0ec9893f20828180 | Triage

Sharing

General

Target

1009ea531d3d797473a9dc83253ccbae
Size

14KB
Sample

231219-m7d1ysbcd8
MD5

1009ea531d3d797473a9dc83253ccbae
SHA1

9a71c4e1ee8985e31daf199c0949ea5f04029e72
SHA256

ef0c9f16b25112683141dfb647fe35ff5889a432070769fb0ec9893f20828180
SHA512

60e651930504f3d3fec18ce1f89a105a02bce3785e4fd6cdc923e4d06916bd298bcaa24198e0d73e535819354fa90d6754aa4e1ebcd4d6d6c53a673040a2ba29
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cU:hDXWipuE+K3/SSHgx8

Score

7^/10

Malware Config

Targets

- Target
  
  1009ea531d3d797473a9dc83253ccbae
- Size
  
  14KB
- MD5
  
  1009ea531d3d797473a9dc83253ccbae
- SHA1
  
  9a71c4e1ee8985e31daf199c0949ea5f04029e72
- SHA256
  
  ef0c9f16b25112683141dfb647fe35ff5889a432070769fb0ec9893f20828180
- SHA512
  
  60e651930504f3d3fec18ce1f89a105a02bce3785e4fd6cdc923e4d06916bd298bcaa24198e0d73e535819354fa90d6754aa4e1ebcd4d6d6c53a673040a2ba29
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cU:hDXWipuE+K3/SSHgx8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2