13cc67ae204709e07286e67c9403b8c4fa1073a4f5f9e6f2b480c89d411430d8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

108f29acdb106155c12b9474572f2c1e
Size

15KB
Sample

231219-m81w4shhbj
MD5

108f29acdb106155c12b9474572f2c1e
SHA1

2db9892f3a6c9cc7d1e53912865c5e14603d7e36
SHA256

13cc67ae204709e07286e67c9403b8c4fa1073a4f5f9e6f2b480c89d411430d8
SHA512

7ad8ad262ef6c6ccbd42b43ddf17036bcadf8b67734e074b755bdca0f695c87085c8331a82c3f47de95b02a88bbd46435d24d1750536f9840c10ae233d420aab
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxX9:hDXWipuE+K3/SSHgxmHf

Score

7^/10

Malware Config

Targets

- Target
  
  108f29acdb106155c12b9474572f2c1e
- Size
  
  15KB
- MD5
  
  108f29acdb106155c12b9474572f2c1e
- SHA1
  
  2db9892f3a6c9cc7d1e53912865c5e14603d7e36
- SHA256
  
  13cc67ae204709e07286e67c9403b8c4fa1073a4f5f9e6f2b480c89d411430d8
- SHA512
  
  7ad8ad262ef6c6ccbd42b43ddf17036bcadf8b67734e074b755bdca0f695c87085c8331a82c3f47de95b02a88bbd46435d24d1750536f9840c10ae233d420aab
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxX9:hDXWipuE+K3/SSHgxmHf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2