e00e6c29594b6afd86c11f2a85cf0c09209b33f8530972a48ce1e9e900d6966e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01f28d2334d0472c14b7680dbbac5189
Size

79KB
Sample

231229-ybqwescfcm
MD5

01f28d2334d0472c14b7680dbbac5189
SHA1

77e9eb17ac37f14ebc212bd68bfe6b3c1b6a4699
SHA256

e00e6c29594b6afd86c11f2a85cf0c09209b33f8530972a48ce1e9e900d6966e
SHA512

88bce5d57eef0dad6e2bc92f96560ff8d48a11b9fcd88d32ba4b63621257916af06a0df01e3c34b89b11032ddfe88e7297a0a1c1ae74a8e26d8abd55de8f2ab9
SSDEEP

1536:+nVN9S4A3QbqLR+u9yFPftLk8CKnslG4tO1tutFWTy1cMvJ32TCRxaL6W:+n0ebwR+u83tLk8CKslG4tO1tuXWO/EX

Score

7^/10

Malware Config

Targets

- Target
  
  01f28d2334d0472c14b7680dbbac5189
- Size
  
  79KB
- MD5
  
  01f28d2334d0472c14b7680dbbac5189
- SHA1
  
  77e9eb17ac37f14ebc212bd68bfe6b3c1b6a4699
- SHA256
  
  e00e6c29594b6afd86c11f2a85cf0c09209b33f8530972a48ce1e9e900d6966e
- SHA512
  
  88bce5d57eef0dad6e2bc92f96560ff8d48a11b9fcd88d32ba4b63621257916af06a0df01e3c34b89b11032ddfe88e7297a0a1c1ae74a8e26d8abd55de8f2ab9
- SSDEEP
  
  1536:+nVN9S4A3QbqLR+u9yFPftLk8CKnslG4tO1tutFWTy1cMvJ32TCRxaL6W:+n0ebwR+u83tLk8CKslG4tO1tuXWO/EX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2