fc9920b7b170b63cd3167b21cc2bff2c746351c6010d5d96dfc2b2e4bab8fe5c | Triage

Sharing

General

Target

d6233c6193802ea1bdb6513178dee0d4
Size

1.6MB
Sample

240319-pvm47sda7z
MD5

d6233c6193802ea1bdb6513178dee0d4
SHA1

8ee6a6c09f4b381c9950c6dc07b5fbff394c82f2
SHA256

fc9920b7b170b63cd3167b21cc2bff2c746351c6010d5d96dfc2b2e4bab8fe5c
SHA512

9cfa2be3c9bec03a13f864531af4e1d701cc13559d86b5ff8916f0ac825ab7c2d779f7fca39d290c86bd9dabe51992a35392c508e7b4592168e38375838efa76
SSDEEP

49152:N8rQmdYldsM0ve6Mx+FhgYF158BLYRbK8R:artK/0W6q+FatBkR9R

Score

7^/10

Malware Config

Targets

- Target
  
  d6233c6193802ea1bdb6513178dee0d4
- Size
  
  1.6MB
- MD5
  
  d6233c6193802ea1bdb6513178dee0d4
- SHA1
  
  8ee6a6c09f4b381c9950c6dc07b5fbff394c82f2
- SHA256
  
  fc9920b7b170b63cd3167b21cc2bff2c746351c6010d5d96dfc2b2e4bab8fe5c
- SHA512
  
  9cfa2be3c9bec03a13f864531af4e1d701cc13559d86b5ff8916f0ac825ab7c2d779f7fca39d290c86bd9dabe51992a35392c508e7b4592168e38375838efa76
- SSDEEP
  
  49152:N8rQmdYldsM0ve6Mx+FhgYF158BLYRbK8R:artK/0W6q+FatBkR9R
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2