06f4ea3c83c2c58e7849db261507816b87b1d0e38807f1c793adcf2b8ea2c77b | Triage

Sharing

General

Target

49135a86718e63f29e0797858428e579
Size

537KB
Sample

231226-bsgbzsafbj
MD5

49135a86718e63f29e0797858428e579
SHA1

85b946861dd9d51c09a743c84c65ce5c3da14e53
SHA256

06f4ea3c83c2c58e7849db261507816b87b1d0e38807f1c793adcf2b8ea2c77b
SHA512

a0cd3bbaf812dfc44d3f603e2e68e495765506d7465fb2c6442b91f272b0d005c52efac5021e2b746e09252cde5629ec878a694150a5c2b623f3d6392fb8daac
SSDEEP

12288:6kImt7rSeYT2UxbNixlbEvVRqVgS+DZrCoq09A:6kIyPYTJBijwxS+FJquA

Score

7^/10

Malware Config

Targets

- Target
  
  49135a86718e63f29e0797858428e579
- Size
  
  537KB
- MD5
  
  49135a86718e63f29e0797858428e579
- SHA1
  
  85b946861dd9d51c09a743c84c65ce5c3da14e53
- SHA256
  
  06f4ea3c83c2c58e7849db261507816b87b1d0e38807f1c793adcf2b8ea2c77b
- SHA512
  
  a0cd3bbaf812dfc44d3f603e2e68e495765506d7465fb2c6442b91f272b0d005c52efac5021e2b746e09252cde5629ec878a694150a5c2b623f3d6392fb8daac
- SSDEEP
  
  12288:6kImt7rSeYT2UxbNixlbEvVRqVgS+DZrCoq09A:6kIyPYTJBijwxS+FJquA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2