a8a56da9c57823233037114bc0c893f9aba0344a64e78828416fbf8fd43ba1a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0ce90937e2e1f05dd321aca8be2699c4
Size

15KB
Sample

231219-mw4ggaffdp
MD5

0ce90937e2e1f05dd321aca8be2699c4
SHA1

0a8e1f8c758564cbe490099cae8ed4d6d3c85e4c
SHA256

a8a56da9c57823233037114bc0c893f9aba0344a64e78828416fbf8fd43ba1a0
SHA512

a57dd3a6190b7fbdc2d4355967a1dfa350ff3929b9bb6c7dd5cf469562c0caee93e6bf9d9a0e32abc9075b6744037c10c695d18e95658a02e89068cedf2fc7d7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxt:hDXWipuE+K3/SSHgxmHf

Score

7^/10

Malware Config

Targets

- Target
  
  0ce90937e2e1f05dd321aca8be2699c4
- Size
  
  15KB
- MD5
  
  0ce90937e2e1f05dd321aca8be2699c4
- SHA1
  
  0a8e1f8c758564cbe490099cae8ed4d6d3c85e4c
- SHA256
  
  a8a56da9c57823233037114bc0c893f9aba0344a64e78828416fbf8fd43ba1a0
- SHA512
  
  a57dd3a6190b7fbdc2d4355967a1dfa350ff3929b9bb6c7dd5cf469562c0caee93e6bf9d9a0e32abc9075b6744037c10c695d18e95658a02e89068cedf2fc7d7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxt:hDXWipuE+K3/SSHgxmHf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2