6564dfb8e2e6c4a68495909d816204123905bb25537cf76f64b00e388d84655b | Triage

Sharing

General

Target

660e88b92b0ad767c26941e04bcfb121
Size

11KB
Sample

240118-z5ln8sacb3
MD5

660e88b92b0ad767c26941e04bcfb121
SHA1

990ea4c5d62f723cda5dc1e61a9f8b9c0bd3b51d
SHA256

6564dfb8e2e6c4a68495909d816204123905bb25537cf76f64b00e388d84655b
SHA512

36e168e0b33deddcc0433a33150162d1b1c2cd49254d7e4a0296b52c32228467d3e18c009a592ea60e307fee7528a8054375366b488a5f89df560fc512e7f4e6
SSDEEP

192:5ZH+V+cXezw8x5xYQjxoxg/C3PnzQrTWa:b+IcXeUYTjxWgun+

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  660e88b92b0ad767c26941e04bcfb121
- Size
  
  11KB
- MD5
  
  660e88b92b0ad767c26941e04bcfb121
- SHA1
  
  990ea4c5d62f723cda5dc1e61a9f8b9c0bd3b51d
- SHA256
  
  6564dfb8e2e6c4a68495909d816204123905bb25537cf76f64b00e388d84655b
- SHA512
  
  36e168e0b33deddcc0433a33150162d1b1c2cd49254d7e4a0296b52c32228467d3e18c009a592ea60e307fee7528a8054375366b488a5f89df560fc512e7f4e6
- SSDEEP
  
  192:5ZH+V+cXezw8x5xYQjxoxg/C3PnzQrTWa:b+IcXeUYTjxWgun+
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2