b2b87d3d99b68350c2db8c3eec56c049647f86d5b027ed351525134d2a3ca665 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f5d069b3ce799f49fdcbb9ddcdd6ef0
Size

55KB
Sample

231222-kw4q5agaf5
MD5

7f5d069b3ce799f49fdcbb9ddcdd6ef0
SHA1

7698bc8f0632a64ae68bc1fc65dcfcc605d7cc8b
SHA256

b2b87d3d99b68350c2db8c3eec56c049647f86d5b027ed351525134d2a3ca665
SHA512

1a7a0472eaa72eb60087155b10e97810f5d191dfaa38e7b1504328aae42cfcadb2951153b11c43872484ab8f8b15b6a4da266bc11b162ca1a4b7ee0dd81ddc71
SSDEEP

768:EEldXkihXstBnz9aNHi+GgX3IJOQEwZSfGBcnHcGIumAB5E0lXB1qK91UE9QzTG7:JdXkE87nccOtwqsIcGIjAPdrl8cQpCXv

Score

7^/10

Malware Config

Targets

- Target
  
  7f5d069b3ce799f49fdcbb9ddcdd6ef0
- Size
  
  55KB
- MD5
  
  7f5d069b3ce799f49fdcbb9ddcdd6ef0
- SHA1
  
  7698bc8f0632a64ae68bc1fc65dcfcc605d7cc8b
- SHA256
  
  b2b87d3d99b68350c2db8c3eec56c049647f86d5b027ed351525134d2a3ca665
- SHA512
  
  1a7a0472eaa72eb60087155b10e97810f5d191dfaa38e7b1504328aae42cfcadb2951153b11c43872484ab8f8b15b6a4da266bc11b162ca1a4b7ee0dd81ddc71
- SSDEEP
  
  768:EEldXkihXstBnz9aNHi+GgX3IJOQEwZSfGBcnHcGIumAB5E0lXB1qK91UE9QzTG7:JdXkE87nccOtwqsIcGIjAPdrl8cQpCXv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2