330aaefb49f90008721cf85fe2954424f97472c9e4d3b252ccdc7fb667e2b141 | Triage

Sharing

General

Target

330aaefb49f90008721cf85fe2954424f97472c9e4d3b252ccdc7fb667e2b141
Size

33KB
Sample

240602-zb9h7sfb77
MD5

cb952955696041a8f4761173a6e045a8
SHA1

2dbbc9717bcca9ddc000617cf65df3c8f1fefbe9
SHA256

330aaefb49f90008721cf85fe2954424f97472c9e4d3b252ccdc7fb667e2b141
SHA512

3e65e87b30d423fee1cb9630835bcc6ab84c1d493efb4c4701ba2663a8fc5f7220ab12f206e6d79ed527caed6f9871414d69ff17b4d84b96cba51ec51f237a94
SSDEEP

384:IP1rSObxPFpopxBoyAI47lUb0LE9QhsgNQ9r4TTFnqoMLHXt1:IPJDtPgrlYLESsqysTTFnOP

Score

7^/10

Malware Config

Targets

- Target
  
  330aaefb49f90008721cf85fe2954424f97472c9e4d3b252ccdc7fb667e2b141
- Size
  
  33KB
- MD5
  
  cb952955696041a8f4761173a6e045a8
- SHA1
  
  2dbbc9717bcca9ddc000617cf65df3c8f1fefbe9
- SHA256
  
  330aaefb49f90008721cf85fe2954424f97472c9e4d3b252ccdc7fb667e2b141
- SHA512
  
  3e65e87b30d423fee1cb9630835bcc6ab84c1d493efb4c4701ba2663a8fc5f7220ab12f206e6d79ed527caed6f9871414d69ff17b4d84b96cba51ec51f237a94
- SSDEEP
  
  384:IP1rSObxPFpopxBoyAI47lUb0LE9QhsgNQ9r4TTFnqoMLHXt1:IPJDtPgrlYLESsqysTTFnOP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2