1136d8b0ddf76714c342f928010034eca60a45994f289f1c796789ec0c518c10 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1bde3878484cdd7b4ca0abd0f430dd68
Size

289KB
Sample

231225-afwepsafe4
MD5

1bde3878484cdd7b4ca0abd0f430dd68
SHA1

356840aee7bba7f684d4a996e7f8f942c31bbdc1
SHA256

1136d8b0ddf76714c342f928010034eca60a45994f289f1c796789ec0c518c10
SHA512

5d6873c3bcbb775a6cdc8485dfb69d64809e36746f0c3aa39fcf0e00d716d4346a9c4dc5f72517c61d869f2ae44f71e6f63fc473a151f9c6b6de66512ff7cc47
SSDEEP

6144:lxqGwAcphJh9jOccrD7pivp+G0mxipZ5hya3u0HVEE:lEGwAcphn9jOP/1iAG0ymZ58a3u0iE

Score

7^/10

Malware Config

Targets

- Target
  
  1bde3878484cdd7b4ca0abd0f430dd68
- Size
  
  289KB
- MD5
  
  1bde3878484cdd7b4ca0abd0f430dd68
- SHA1
  
  356840aee7bba7f684d4a996e7f8f942c31bbdc1
- SHA256
  
  1136d8b0ddf76714c342f928010034eca60a45994f289f1c796789ec0c518c10
- SHA512
  
  5d6873c3bcbb775a6cdc8485dfb69d64809e36746f0c3aa39fcf0e00d716d4346a9c4dc5f72517c61d869f2ae44f71e6f63fc473a151f9c6b6de66512ff7cc47
- SSDEEP
  
  6144:lxqGwAcphJh9jOccrD7pivp+G0mxipZ5hya3u0HVEE:lEGwAcphn9jOP/1iAG0ymZ58a3u0iE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2