c1c1c0611d375a92bf34304d63f62d0ea066a17f576048e7b83777d0a4061089 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

089e600c0ebe4b31c12f413deaddca20
Size

15KB
Sample

231219-mmkyrsehd9
MD5

089e600c0ebe4b31c12f413deaddca20
SHA1

c48b7d111cbacc5d87d79fd814d71fc3bf2288d4
SHA256

c1c1c0611d375a92bf34304d63f62d0ea066a17f576048e7b83777d0a4061089
SHA512

4c74dc8727239dc6f817a90e4712786741c55fee43315f15af52b5c075361f20b64e2ed839e579aaacead9c3832e6bc1a61791b986383a367e75f8c97c5e98ef
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJH7:hDXWipuE+K3/SSHgxmlOJH7

Score

7^/10

Malware Config

Targets

- Target
  
  089e600c0ebe4b31c12f413deaddca20
- Size
  
  15KB
- MD5
  
  089e600c0ebe4b31c12f413deaddca20
- SHA1
  
  c48b7d111cbacc5d87d79fd814d71fc3bf2288d4
- SHA256
  
  c1c1c0611d375a92bf34304d63f62d0ea066a17f576048e7b83777d0a4061089
- SHA512
  
  4c74dc8727239dc6f817a90e4712786741c55fee43315f15af52b5c075361f20b64e2ed839e579aaacead9c3832e6bc1a61791b986383a367e75f8c97c5e98ef
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJH7:hDXWipuE+K3/SSHgxmlOJH7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2