469c488ac32fedd2ddd120b0f9a8eba6d3d9042d0ffc360f4877565ff7f50917 | Triage

Sharing

General

Target

43cb67b8dfbf8b5617dcf9c6798a6fba
Size

199KB
Sample

240105-qpnzzsdhf9
MD5

43cb67b8dfbf8b5617dcf9c6798a6fba
SHA1

34fdc90bcda09b8b2f928147b2f8b66b68af0715
SHA256

469c488ac32fedd2ddd120b0f9a8eba6d3d9042d0ffc360f4877565ff7f50917
SHA512

a62c01c350df9ed81c78fdd0c08df2c60778d5e37595bd96016906619fa5edd17798a372d2e3527f3cec22d1d599eb9fabcbb627ff89f814e5c584551ea15767
SSDEEP

3072:zqL/trguWkyHCRA6Yeo3TnLUHFU6yoSF0jabLp5+WHpiojcwrETpN7dSuMHCsMnV:zZuzPieojnLUO6a2OioYNNIuMokm

Score

7^/10

Malware Config

Targets

- Target
  
  43cb67b8dfbf8b5617dcf9c6798a6fba
- Size
  
  199KB
- MD5
  
  43cb67b8dfbf8b5617dcf9c6798a6fba
- SHA1
  
  34fdc90bcda09b8b2f928147b2f8b66b68af0715
- SHA256
  
  469c488ac32fedd2ddd120b0f9a8eba6d3d9042d0ffc360f4877565ff7f50917
- SHA512
  
  a62c01c350df9ed81c78fdd0c08df2c60778d5e37595bd96016906619fa5edd17798a372d2e3527f3cec22d1d599eb9fabcbb627ff89f814e5c584551ea15767
- SSDEEP
  
  3072:zqL/trguWkyHCRA6Yeo3TnLUHFU6yoSF0jabLp5+WHpiojcwrETpN7dSuMHCsMnV:zZuzPieojnLUO6a2OioYNNIuMokm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2