6e1786f02806e9a638dc5ef0e530922200eae76024fcbda627dad615a41cbcfd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cc04adf15e049e1a20ce8ad651da920
Size

61KB
Sample

231225-hlwxesgdgr
MD5

0cc04adf15e049e1a20ce8ad651da920
SHA1

7debabc2a9bb1e13e17311208eb02fd304b077e6
SHA256

6e1786f02806e9a638dc5ef0e530922200eae76024fcbda627dad615a41cbcfd
SHA512

a919882d5667a460d002a496d1cd9bc5ccc48872b9d1731247758a5a6a04c7d238f32a86cf15a3dd147aa5267001f4d5e5872b938d7394f623d4c6ccecb1c3a9
SSDEEP

1536:h2KruHrFUU8uPBgdgEUPAxjDriTm7MozSq:9uFJPud7lxjDDj

Score

7^/10

Malware Config

Targets

- Target
  
  0cc04adf15e049e1a20ce8ad651da920
- Size
  
  61KB
- MD5
  
  0cc04adf15e049e1a20ce8ad651da920
- SHA1
  
  7debabc2a9bb1e13e17311208eb02fd304b077e6
- SHA256
  
  6e1786f02806e9a638dc5ef0e530922200eae76024fcbda627dad615a41cbcfd
- SHA512
  
  a919882d5667a460d002a496d1cd9bc5ccc48872b9d1731247758a5a6a04c7d238f32a86cf15a3dd147aa5267001f4d5e5872b938d7394f623d4c6ccecb1c3a9
- SSDEEP
  
  1536:h2KruHrFUU8uPBgdgEUPAxjDriTm7MozSq:9uFJPud7lxjDDj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2