10616628e228cc687ba78da28837a179702760b7604bbd86fb5c214dc58f612f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0c928ea662fbf9b5be52bf4c7cb7bd58
Size

3.1MB
Sample

231230-dpg58ahfgp
MD5

0c928ea662fbf9b5be52bf4c7cb7bd58
SHA1

00025bce1664a0e180189e599e7fd1501fbce63e
SHA256

10616628e228cc687ba78da28837a179702760b7604bbd86fb5c214dc58f612f
SHA512

b45bd9174150ca32b06aa8a922a4aef5c4fa898b1644dab208385a0dd0a029428520af50bf57edcc89b6fb351df0d3747f7b56a73020ec36ff8838e647a73505
SSDEEP

49152:Fvm22KmZWXqrJry+JGfKWEQoFsmyUiG4/wlrUbyI1EYwLVT5kUvgJSgHT6ojkxFn:5mJZWgry+ajoFZyR6dlzVLUjH5oxFbxx

Score

7^/10

Malware Config

Targets

- Target
  
  0c928ea662fbf9b5be52bf4c7cb7bd58
- Size
  
  3.1MB
- MD5
  
  0c928ea662fbf9b5be52bf4c7cb7bd58
- SHA1
  
  00025bce1664a0e180189e599e7fd1501fbce63e
- SHA256
  
  10616628e228cc687ba78da28837a179702760b7604bbd86fb5c214dc58f612f
- SHA512
  
  b45bd9174150ca32b06aa8a922a4aef5c4fa898b1644dab208385a0dd0a029428520af50bf57edcc89b6fb351df0d3747f7b56a73020ec36ff8838e647a73505
- SSDEEP
  
  49152:Fvm22KmZWXqrJry+JGfKWEQoFsmyUiG4/wlrUbyI1EYwLVT5kUvgJSgHT6ojkxFn:5mJZWgry+ajoFZyR6dlzVLUjH5oxFbxx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2