814c8bb8797f502c2bbe57aa7dda9b744230ee9298252561ccb47773c2eb8893 | Triage

Sharing

General

Target

814c8bb8797f502c2bbe57aa7dda9b744230ee9298252561ccb47773c2eb8893
Size

2.4MB
Sample

240429-kmc7taee67
MD5

3dbffb054d3c83721266407647e22170
SHA1

6e99c36bcb00ab43255554161fc1bcf189f41632
SHA256

814c8bb8797f502c2bbe57aa7dda9b744230ee9298252561ccb47773c2eb8893
SHA512

c1982c09cbc3f176670a4792513c0fa536a79d978c4c508468d44353813e9605e1d7e66147137e8eecbb2b7b8e80472d3fba91bf70096743ab3b18ecc7348a95
SSDEEP

49152:TwCtop/o4uzWf3LvSVMrrljEHxLhNYLahdPXp8gR2ivczdGJrtlxEu:TwC31Sf7vSuI9NYGZ2ScSt4u

Score

7^/10

Malware Config

Targets

- Target
  
  814c8bb8797f502c2bbe57aa7dda9b744230ee9298252561ccb47773c2eb8893
- Size
  
  2.4MB
- MD5
  
  3dbffb054d3c83721266407647e22170
- SHA1
  
  6e99c36bcb00ab43255554161fc1bcf189f41632
- SHA256
  
  814c8bb8797f502c2bbe57aa7dda9b744230ee9298252561ccb47773c2eb8893
- SHA512
  
  c1982c09cbc3f176670a4792513c0fa536a79d978c4c508468d44353813e9605e1d7e66147137e8eecbb2b7b8e80472d3fba91bf70096743ab3b18ecc7348a95
- SSDEEP
  
  49152:TwCtop/o4uzWf3LvSVMrrljEHxLhNYLahdPXp8gR2ivczdGJrtlxEu:TwC31Sf7vSuI9NYGZ2ScSt4u
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2