abe16aa5440f4ffbd046af2a6c9f8bd600ad628fe6649774a4d8da9e7a7fbeaf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abe16aa5440f4ffbd046af2a6c9f8bd600ad628fe6649774a4d8da9e7a7fbeaf
Size

6.8MB
Sample

240426-wwhz7shc79
MD5

3a995b0043d4a1f64af673c27efb90f7
SHA1

0122af44914d878a155113e538343e27ef87ebf8
SHA256

abe16aa5440f4ffbd046af2a6c9f8bd600ad628fe6649774a4d8da9e7a7fbeaf
SHA512

62ce8e1c22adb1c541949c7a77e290fb058aeebcfda1bfdec0b62cefc06f9be085b33f9be9555b821dd1604b2cb03322f46d1f0506f53ca7f90fe741c5f156d1
SSDEEP

196608:dVWukQy6DrklU/dEGLQELX76fIQ5LApkpjuMaE4O:dKQhkI/syMIQ5spk1uMt

Score

7^/10

Malware Config

Targets

- Target
  
  abe16aa5440f4ffbd046af2a6c9f8bd600ad628fe6649774a4d8da9e7a7fbeaf
- Size
  
  6.8MB
- MD5
  
  3a995b0043d4a1f64af673c27efb90f7
- SHA1
  
  0122af44914d878a155113e538343e27ef87ebf8
- SHA256
  
  abe16aa5440f4ffbd046af2a6c9f8bd600ad628fe6649774a4d8da9e7a7fbeaf
- SHA512
  
  62ce8e1c22adb1c541949c7a77e290fb058aeebcfda1bfdec0b62cefc06f9be085b33f9be9555b821dd1604b2cb03322f46d1f0506f53ca7f90fe741c5f156d1
- SSDEEP
  
  196608:dVWukQy6DrklU/dEGLQELX76fIQ5LApkpjuMaE4O:dKQhkI/syMIQ5spk1uMt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2