73aa16cfdce24f0ccc4a0ded59911e7134ac276c0509057b380b1d7732ce2aed | Triage

Sharing

General

Target

02681f2b6dc045d9a97ca4a09b9ab99a
Size

64KB
Sample

231229-yn7ppsbab7
MD5

02681f2b6dc045d9a97ca4a09b9ab99a
SHA1

486f32ee4c28b0944368d75ed2c4df77fdc8f2a4
SHA256

73aa16cfdce24f0ccc4a0ded59911e7134ac276c0509057b380b1d7732ce2aed
SHA512

0a13ef7ab2c0504c208e2c43d9d2ed5fda6d22dea28913aec2a127dec0df1b653c903e8951ca287ef3d8e7c8560ae1adef3588706e5dd30b956c6d561fabddea
SSDEEP

768:b/5inm+cd5rHemPXkqUEphjVuvios1rPr4adL0NqlJMU60+ppQ1TTGfLS:bRsvcdcQjosnvnZ6LQ1ES

Score

7^/10

Malware Config

Targets

- Target
  
  02681f2b6dc045d9a97ca4a09b9ab99a
- Size
  
  64KB
- MD5
  
  02681f2b6dc045d9a97ca4a09b9ab99a
- SHA1
  
  486f32ee4c28b0944368d75ed2c4df77fdc8f2a4
- SHA256
  
  73aa16cfdce24f0ccc4a0ded59911e7134ac276c0509057b380b1d7732ce2aed
- SHA512
  
  0a13ef7ab2c0504c208e2c43d9d2ed5fda6d22dea28913aec2a127dec0df1b653c903e8951ca287ef3d8e7c8560ae1adef3588706e5dd30b956c6d561fabddea
- SSDEEP
  
  768:b/5inm+cd5rHemPXkqUEphjVuvios1rPr4adL0NqlJMU60+ppQ1TTGfLS:bRsvcdcQjosnvnZ6LQ1ES
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2