06fb93d1de27818dbc6d77b99279c23cc28d5b8df95150a698df316eae860ad9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35760e665b1caf783f5f4466cdea61c2
Size

164KB
Sample

231225-xegaqagba4
MD5

35760e665b1caf783f5f4466cdea61c2
SHA1

826c6640543e48425ad46ebbcba4894066b6b648
SHA256

06fb93d1de27818dbc6d77b99279c23cc28d5b8df95150a698df316eae860ad9
SHA512

ab262b967c4c156a7fb08a6842993b7a85d9e14a2343559ef2de7eb125c523c0125264f81c230de00ccbc7ef3dadfb53f59b45f0112e3621a37c5485ebbb154d
SSDEEP

3072:2aOBvudlu7lFxe4aO2daluPWEu3ZQAqIhJV9JsNyYojF3iI5yox:BgWlu7nxe4aF1PHFyhJVnsNbocI5j

Score

7^/10

Malware Config

Targets

- Target
  
  35760e665b1caf783f5f4466cdea61c2
- Size
  
  164KB
- MD5
  
  35760e665b1caf783f5f4466cdea61c2
- SHA1
  
  826c6640543e48425ad46ebbcba4894066b6b648
- SHA256
  
  06fb93d1de27818dbc6d77b99279c23cc28d5b8df95150a698df316eae860ad9
- SHA512
  
  ab262b967c4c156a7fb08a6842993b7a85d9e14a2343559ef2de7eb125c523c0125264f81c230de00ccbc7ef3dadfb53f59b45f0112e3621a37c5485ebbb154d
- SSDEEP
  
  3072:2aOBvudlu7lFxe4aO2daluPWEu3ZQAqIhJV9JsNyYojF3iI5yox:BgWlu7nxe4aF1PHFyhJVnsNbocI5j
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2