03df3ce82c0d69c1ba8b0c67fdb83dd771b14303b6d61511f8c5622e8da78be7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f0780b25b633b3c64f852abe551fc97
Size

212KB
Sample

231230-2s976shee7
MD5

1f0780b25b633b3c64f852abe551fc97
SHA1

4baecfc3ff291a0367c0d630ee38d861539aa7b7
SHA256

03df3ce82c0d69c1ba8b0c67fdb83dd771b14303b6d61511f8c5622e8da78be7
SHA512

793efa6a3de70e970f36566ee28fcd1f8538cfdb2b46bfd23c3f3b20d0050e3ff860686fb528ba6c0a3421d7397f2299022a4f86719f8766c094ee536c9c6ab3
SSDEEP

3072:OChJgYMm4xf9cU9KQ2BxA59SPMSOokn2:uYMm4xiWKQ2BiCM

Score

7^/10

Malware Config

Targets

- Target
  
  1f0780b25b633b3c64f852abe551fc97
- Size
  
  212KB
- MD5
  
  1f0780b25b633b3c64f852abe551fc97
- SHA1
  
  4baecfc3ff291a0367c0d630ee38d861539aa7b7
- SHA256
  
  03df3ce82c0d69c1ba8b0c67fdb83dd771b14303b6d61511f8c5622e8da78be7
- SHA512
  
  793efa6a3de70e970f36566ee28fcd1f8538cfdb2b46bfd23c3f3b20d0050e3ff860686fb528ba6c0a3421d7397f2299022a4f86719f8766c094ee536c9c6ab3
- SSDEEP
  
  3072:OChJgYMm4xf9cU9KQ2BxA59SPMSOokn2:uYMm4xiWKQ2BiCM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2