20aaf369a3ae0d761d4f82add7c131761687283506ca01556980d958db18ec1f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03f8f8c54fc70e15bce0845c646d26ab
Size

1.5MB
Sample

231229-zwtcqaded9
MD5

03f8f8c54fc70e15bce0845c646d26ab
SHA1

1abaa983b5da9e10914c4cf05ee0f8bd0b939dca
SHA256

20aaf369a3ae0d761d4f82add7c131761687283506ca01556980d958db18ec1f
SHA512

bc3433a648277901d6101362402dc9fbb88eaec8bfa2faf1ff3fc672529f679cd75b3ffe7aaacc8a0b96194c5480e942745363f9a3299c08a1970659ad96a55f
SSDEEP

49152:7ImBs/9Y9FdXsN5SX1fCpfVPlzVzWrddT6GnB:Y9Y/ONoX1faVNpCdV6UB

Score

7^/10

Malware Config

Targets

- Target
  
  03f8f8c54fc70e15bce0845c646d26ab
- Size
  
  1.5MB
- MD5
  
  03f8f8c54fc70e15bce0845c646d26ab
- SHA1
  
  1abaa983b5da9e10914c4cf05ee0f8bd0b939dca
- SHA256
  
  20aaf369a3ae0d761d4f82add7c131761687283506ca01556980d958db18ec1f
- SHA512
  
  bc3433a648277901d6101362402dc9fbb88eaec8bfa2faf1ff3fc672529f679cd75b3ffe7aaacc8a0b96194c5480e942745363f9a3299c08a1970659ad96a55f
- SSDEEP
  
  49152:7ImBs/9Y9FdXsN5SX1fCpfVPlzVzWrddT6GnB:Y9Y/ONoX1faVNpCdV6UB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2