651a91ce098bc4c64ea81b161f342a655132729b60172e655e21529d4af88f9f | Triage

Sharing

General

Target

651a91ce098bc4c64ea81b161f342a655132729b60172e655e21529d4af88f9f
Size

303KB
Sample

240308-ykkqrsfe8y
MD5

cebaa6ad5deaaa7454e59b4a25ac23df
SHA1

7eae6915f511ed0b2119cc752f577f1a4af54a76
SHA256

651a91ce098bc4c64ea81b161f342a655132729b60172e655e21529d4af88f9f
SHA512

0dbdeab18a9aee5185492ab599c59cd4707aad251938838cb95f81b33fc772e27da8fe83f507dc4929160198758d53fca2a5d6adb047cd1e2a47a61bb5d8b9fb
SSDEEP

3072:fBlvaWjzrLXQQJKgmSBAVpet2AgoblPVwRcCxSrpX4o0sjqR0N2YvgfRU0wJ:ppaWjz/gGKgmS+k2w6cIe4Au03vgJTwJ

Score

7^/10

Malware Config

Targets

- Target
  
  651a91ce098bc4c64ea81b161f342a655132729b60172e655e21529d4af88f9f
- Size
  
  303KB
- MD5
  
  cebaa6ad5deaaa7454e59b4a25ac23df
- SHA1
  
  7eae6915f511ed0b2119cc752f577f1a4af54a76
- SHA256
  
  651a91ce098bc4c64ea81b161f342a655132729b60172e655e21529d4af88f9f
- SHA512
  
  0dbdeab18a9aee5185492ab599c59cd4707aad251938838cb95f81b33fc772e27da8fe83f507dc4929160198758d53fca2a5d6adb047cd1e2a47a61bb5d8b9fb
- SSDEEP
  
  3072:fBlvaWjzrLXQQJKgmSBAVpet2AgoblPVwRcCxSrpX4o0sjqR0N2YvgfRU0wJ:ppaWjz/gGKgmS+k2w6cIe4Au03vgJTwJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2