fddcd3ece9ed878fba00048c6aa461b88a88d7e8b869f64da047e1124b0e68b4 | Triage

Sharing

General

Target

fddcd3ece9ed878fba00048c6aa461b88a88d7e8b869f64da047e1124b0e68b4
Size

28KB
Sample

240609-q5gkvabc21
MD5

64e132f243b4ba38c0f4cb26d8e334c7
SHA1

7df803f1b53488bbb9cda6a9a0d96b3c30f706d1
SHA256

fddcd3ece9ed878fba00048c6aa461b88a88d7e8b869f64da047e1124b0e68b4
SHA512

b73b63443e5ced504687da8a63b2e49c6b35c4d448dad969773d4de4b4da5ab902f9a19254cee1332aff4f482a264f5e1432b9e5f1a4e517736dac754d5446eb
SSDEEP

768:DS7nh4aQC9xkV1tdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsUI+TnLL:DS7nK8eztdgI2MyzNORQtOflIwoHNV2U

Score

7^/10

Malware Config

Targets

- Target
  
  fddcd3ece9ed878fba00048c6aa461b88a88d7e8b869f64da047e1124b0e68b4
- Size
  
  28KB
- MD5
  
  64e132f243b4ba38c0f4cb26d8e334c7
- SHA1
  
  7df803f1b53488bbb9cda6a9a0d96b3c30f706d1
- SHA256
  
  fddcd3ece9ed878fba00048c6aa461b88a88d7e8b869f64da047e1124b0e68b4
- SHA512
  
  b73b63443e5ced504687da8a63b2e49c6b35c4d448dad969773d4de4b4da5ab902f9a19254cee1332aff4f482a264f5e1432b9e5f1a4e517736dac754d5446eb
- SSDEEP
  
  768:DS7nh4aQC9xkV1tdgI2MyzNORQtOflIwoHNV2XBFV72B4lA7ZsUI+TnLL:DS7nK8eztdgI2MyzNORQtOflIwoHNV2U
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2