d281ec8266f66c584f59ca60f84df682a2a1f71eb307c4062e5b399d254035b1 | Triage

Sharing

General

Target

d281ec8266f66c584f59ca60f84df682a2a1f71eb307c4062e5b399d254035b1
Size

49KB
Sample

240422-d6wd6sfc7x
MD5

2b235c9545417f86d7ecbd6b5ffc165d
SHA1

e7147b83fed1e565052dc04de0ed411c75698fa5
SHA256

d281ec8266f66c584f59ca60f84df682a2a1f71eb307c4062e5b399d254035b1
SHA512

027ca2b8ccfc6fc54e4ae8e9a125cd55c3cb19e2e4235c76f11a6d7d418e5e45b8d55324ad7b5678405e6e894bfbe6dde475a980a5baca42bdeea0b762c5df9c
SSDEEP

768:l2EMQWlqBxRlHzZN2zJo3LeivGnCoPToFr1t6nV86T:0lqBxRlHzZN2zSPvDoPTojt65

Score

7^/10

Malware Config

Targets

- Target
  
  d281ec8266f66c584f59ca60f84df682a2a1f71eb307c4062e5b399d254035b1
- Size
  
  49KB
- MD5
  
  2b235c9545417f86d7ecbd6b5ffc165d
- SHA1
  
  e7147b83fed1e565052dc04de0ed411c75698fa5
- SHA256
  
  d281ec8266f66c584f59ca60f84df682a2a1f71eb307c4062e5b399d254035b1
- SHA512
  
  027ca2b8ccfc6fc54e4ae8e9a125cd55c3cb19e2e4235c76f11a6d7d418e5e45b8d55324ad7b5678405e6e894bfbe6dde475a980a5baca42bdeea0b762c5df9c
- SSDEEP
  
  768:l2EMQWlqBxRlHzZN2zJo3LeivGnCoPToFr1t6nV86T:0lqBxRlHzZN2zSPvDoPTojt65
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2