db86f8198ad1d0f405d1cb3c02bf0590157a3c045a761d6692993b906d3f20eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2375eb5c02ec303a04207fb727178b7f
Size

2.1MB
Sample

231225-q8dncsdhfr
MD5

2375eb5c02ec303a04207fb727178b7f
SHA1

e7591ae6421ba07e459aa06411b1fd7b8e31aefb
SHA256

db86f8198ad1d0f405d1cb3c02bf0590157a3c045a761d6692993b906d3f20eb
SHA512

749085fc99bde04e409e491cdb45f969548cd348e9c98428722c609fde45dbadcaefa408ef8140de646e444e088e40adf4f2e5ee36ee165837c9511c40ee11ed
SSDEEP

49152:cuW8tUfxtUfLtUfPtUfjaI7iD+bcJBVlApYirWGe+avg:cuL+fx+fL+fP+fH8Vlx1+B

Score

7^/10

Malware Config

Targets

- Target
  
  2375eb5c02ec303a04207fb727178b7f
- Size
  
  2.1MB
- MD5
  
  2375eb5c02ec303a04207fb727178b7f
- SHA1
  
  e7591ae6421ba07e459aa06411b1fd7b8e31aefb
- SHA256
  
  db86f8198ad1d0f405d1cb3c02bf0590157a3c045a761d6692993b906d3f20eb
- SHA512
  
  749085fc99bde04e409e491cdb45f969548cd348e9c98428722c609fde45dbadcaefa408ef8140de646e444e088e40adf4f2e5ee36ee165837c9511c40ee11ed
- SSDEEP
  
  49152:cuW8tUfxtUfLtUfPtUfjaI7iD+bcJBVlApYirWGe+avg:cuL+fx+fL+fP+fH8Vlx1+B
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2