847a4fbf0d162073ff3c0f08e5beb3a94729dbb9778f495c2e42860404d15f9e | Triage

Sharing

General

Target

2527ce19ca8117d5bfee6555a2e1f408
Size

45KB
Sample

231231-dbkdesbbeq
MD5

2527ce19ca8117d5bfee6555a2e1f408
SHA1

b0023a3c1cbb12289cdce2a9cef796cedc0aba45
SHA256

847a4fbf0d162073ff3c0f08e5beb3a94729dbb9778f495c2e42860404d15f9e
SHA512

ad51396033c04c6bcb9f60d7792abb8549ea2f4941b3ed2807fd218b14ad3c45807917d3b654edbefa6f672e4719b54982bf90c2fa2c4151a124703c8ef8f5fb
SSDEEP

768:Ldv+Xqd1szndUe9I+N68Jop8pwYbX2oi1Sb3CvJMsbc08K9/:4Xqd1sxl5Up8pwYbX28e1l

Score

7^/10

Malware Config

Targets

- Target
  
  2527ce19ca8117d5bfee6555a2e1f408
- Size
  
  45KB
- MD5
  
  2527ce19ca8117d5bfee6555a2e1f408
- SHA1
  
  b0023a3c1cbb12289cdce2a9cef796cedc0aba45
- SHA256
  
  847a4fbf0d162073ff3c0f08e5beb3a94729dbb9778f495c2e42860404d15f9e
- SHA512
  
  ad51396033c04c6bcb9f60d7792abb8549ea2f4941b3ed2807fd218b14ad3c45807917d3b654edbefa6f672e4719b54982bf90c2fa2c4151a124703c8ef8f5fb
- SSDEEP
  
  768:Ldv+Xqd1szndUe9I+N68Jop8pwYbX2oi1Sb3CvJMsbc08K9/:4Xqd1sxl5Up8pwYbX28e1l
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2