fb1560e6f63058978b30913c632e0f1d8cd4f2312e1b88a22d9bcfc7ef2e3500 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e2f9dc64a367757bd3075a7174c6aee
Size

16KB
Sample

231219-mz3pcagdbk
MD5

0e2f9dc64a367757bd3075a7174c6aee
SHA1

dc185829ddb9caca5106f53e0770b0caea1dc202
SHA256

fb1560e6f63058978b30913c632e0f1d8cd4f2312e1b88a22d9bcfc7ef2e3500
SHA512

976747c9746f88758679226b837afedda6e643c6ab88f75cece556005d6b517a7107347ca873376a0bd375d789862a509103c2f4dacca7b39a37c99328bb3e5d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYY3P:hDXWipuE+K3/SSHgxmY3P

Score

7^/10

Malware Config

Targets

- Target
  
  0e2f9dc64a367757bd3075a7174c6aee
- Size
  
  16KB
- MD5
  
  0e2f9dc64a367757bd3075a7174c6aee
- SHA1
  
  dc185829ddb9caca5106f53e0770b0caea1dc202
- SHA256
  
  fb1560e6f63058978b30913c632e0f1d8cd4f2312e1b88a22d9bcfc7ef2e3500
- SHA512
  
  976747c9746f88758679226b837afedda6e643c6ab88f75cece556005d6b517a7107347ca873376a0bd375d789862a509103c2f4dacca7b39a37c99328bb3e5d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYY3P:hDXWipuE+K3/SSHgxmY3P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2