33afef833dcb4dd7102d39dc249f2afed4becf03e2a0c9eea1bed00482b70e3d | Triage

Sharing

General

Target

33afef833dcb4dd7102d39dc249f2afed4becf03e2a0c9eea1bed00482b70e3d
Size

91KB
Sample

240606-zs7qyabh8y
MD5

f99326cecbc6e3882561eb2d4c4e586a
SHA1

c91a355104d0c3fff7e62365f5f0073640056ba2
SHA256

33afef833dcb4dd7102d39dc249f2afed4becf03e2a0c9eea1bed00482b70e3d
SHA512

7e92395738fb900f7542b83971301fe8ad16c611fdd7f79a54078dfc63e1ce8d1d13a67b6baf4efab3f630c0fd94e9dc0a503a45b7e60ee62c4e78432dfa735c
SSDEEP

1536:DS7nK8eztdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsyPibdF45jYl7JJUj23p3:DJtdgI2MyzNORQtOflIwoHNV2XBFV72o

Score

7^/10

Malware Config

Targets

- Target
  
  33afef833dcb4dd7102d39dc249f2afed4becf03e2a0c9eea1bed00482b70e3d
- Size
  
  91KB
- MD5
  
  f99326cecbc6e3882561eb2d4c4e586a
- SHA1
  
  c91a355104d0c3fff7e62365f5f0073640056ba2
- SHA256
  
  33afef833dcb4dd7102d39dc249f2afed4becf03e2a0c9eea1bed00482b70e3d
- SHA512
  
  7e92395738fb900f7542b83971301fe8ad16c611fdd7f79a54078dfc63e1ce8d1d13a67b6baf4efab3f630c0fd94e9dc0a503a45b7e60ee62c4e78432dfa735c
- SSDEEP
  
  1536:DS7nK8eztdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsyPibdF45jYl7JJUj23p3:DJtdgI2MyzNORQtOflIwoHNV2XBFV72o
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2