ebc85aff78379ad5dfbd38dd92bff4cd393316eb32814d491b964ed97947b360 | Triage

Sharing

General

Target

ebc85aff78379ad5dfbd38dd92bff4cd393316eb32814d491b964ed97947b360
Size

224KB
Sample

240329-e94qdsaf29
MD5

5bc3c1170791085dcda6bbcaa1661843
SHA1

6183977c4bbed0c0e7c0edb619bdac5b757092e0
SHA256

ebc85aff78379ad5dfbd38dd92bff4cd393316eb32814d491b964ed97947b360
SHA512

106f69ff70750ed12ce8481afa6333154cbb13508b9dacdb47bdf9448006528c42cfb390f966cd0352428592406a245bad3bc6958abcb9054ad8aca8e3fce812
SSDEEP

3072:GhtKlty0L+ThCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:Ghklty0sAYcD6Kad

Score

7^/10

Malware Config

Targets

- Target
  
  ebc85aff78379ad5dfbd38dd92bff4cd393316eb32814d491b964ed97947b360
- Size
  
  224KB
- MD5
  
  5bc3c1170791085dcda6bbcaa1661843
- SHA1
  
  6183977c4bbed0c0e7c0edb619bdac5b757092e0
- SHA256
  
  ebc85aff78379ad5dfbd38dd92bff4cd393316eb32814d491b964ed97947b360
- SHA512
  
  106f69ff70750ed12ce8481afa6333154cbb13508b9dacdb47bdf9448006528c42cfb390f966cd0352428592406a245bad3bc6958abcb9054ad8aca8e3fce812
- SSDEEP
  
  3072:GhtKlty0L+ThCjG8G3GbGVGBGfGuGxGWYcrf6Kadk:Ghklty0sAYcD6Kad
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2