87ee9c61962ef7821d1fb9dc430121a58758d0b71c8990ea999dd96655640004 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

87ee9c61962ef7821d1fb9dc430121a58758d0b71c8990ea999dd96655640004
Size

21KB
Sample

240502-afmskadc49
MD5

c719ccd763f8b24d26a3b3e95fd1b50b
SHA1

b39cd1b8ea3efea3461cb9ec9cf087d46bc386d4
SHA256

87ee9c61962ef7821d1fb9dc430121a58758d0b71c8990ea999dd96655640004
SHA512

5e263f4851021afac2c2e968dd820681363fa4139199fb111bf73d0501dba3be0ca17f87cf182b9132588a0a9d9692f0d186071d67a1fcf320ea99abec197ebf
SSDEEP

384:uDfuXMLcb8yc8cXFflgyK5jBMMYMSHG61zSjULZS+UKWHRRjliX:dpgAMMzSHG7ULY+PmzEX

Score

7^/10

Malware Config

Targets

- Target
  
  87ee9c61962ef7821d1fb9dc430121a58758d0b71c8990ea999dd96655640004
- Size
  
  21KB
- MD5
  
  c719ccd763f8b24d26a3b3e95fd1b50b
- SHA1
  
  b39cd1b8ea3efea3461cb9ec9cf087d46bc386d4
- SHA256
  
  87ee9c61962ef7821d1fb9dc430121a58758d0b71c8990ea999dd96655640004
- SHA512
  
  5e263f4851021afac2c2e968dd820681363fa4139199fb111bf73d0501dba3be0ca17f87cf182b9132588a0a9d9692f0d186071d67a1fcf320ea99abec197ebf
- SSDEEP
  
  384:uDfuXMLcb8yc8cXFflgyK5jBMMYMSHG61zSjULZS+UKWHRRjliX:dpgAMMzSHG7ULY+PmzEX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2