fee5ed2692a8f0d4966f8e2c0444897c25f90596649e0272cee667bea83f90d3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fee5ed2692a8f0d4966f8e2c0444897c25f90596649e0272cee667bea83f90d3
Size

208KB
Sample

240422-f9te4agd79
MD5

0cdcb2f5adce1ce0d1e339a8aeff8273
SHA1

7362da727425e3690df39c9145b426a5c7cf0058
SHA256

fee5ed2692a8f0d4966f8e2c0444897c25f90596649e0272cee667bea83f90d3
SHA512

83d3c7225b557e6cfdbdd3944027842941e8579c66a945326cd74d750588916b7aba90a32762ce9a0e4be5cc1f7478e88ed514995df9a8e8d86dca7072094b78
SSDEEP

1536:iHtNFk+5wIaVanPSE8GHo7P1A4xVz28nJtonpZIqi2uN:idk+xagnPm/P1A4xVzPonp2N

Score

7^/10

Malware Config

Targets

- Target
  
  fee5ed2692a8f0d4966f8e2c0444897c25f90596649e0272cee667bea83f90d3
- Size
  
  208KB
- MD5
  
  0cdcb2f5adce1ce0d1e339a8aeff8273
- SHA1
  
  7362da727425e3690df39c9145b426a5c7cf0058
- SHA256
  
  fee5ed2692a8f0d4966f8e2c0444897c25f90596649e0272cee667bea83f90d3
- SHA512
  
  83d3c7225b557e6cfdbdd3944027842941e8579c66a945326cd74d750588916b7aba90a32762ce9a0e4be5cc1f7478e88ed514995df9a8e8d86dca7072094b78
- SSDEEP
  
  1536:iHtNFk+5wIaVanPSE8GHo7P1A4xVz28nJtonpZIqi2uN:idk+xagnPm/P1A4xVzPonp2N
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2