166ec6d652868c9e7760976dc2458655ca15c6da2b2dcc767820b079da76fe81 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

166ec6d652868c9e7760976dc2458655ca15c6da2b2dcc767820b079da76fe81.exe
Size

1.3MB
Sample

240710-sbx2vatgrr
MD5

79deee81f5bbea4e423490a1b122c90c
SHA1

49f5b097f733601d67583919c9b4563fab26599d
SHA256

166ec6d652868c9e7760976dc2458655ca15c6da2b2dcc767820b079da76fe81
SHA512

83e167b624384ab3dae5ab2d3686befa06b7e868a223d7d69af89374a59ac9a3eb9f11ce582d83d002a1ed0ec1b7f6a14390000872f45a8d8a93578b78bde9a5
SSDEEP

24576:tXwOrRsQkPFfuXgoUcITXSf+KFItCd5L7od2PzyMqMajcV6p0ozzrKYVpjZFG1Zw:tgwRq8XgoUcIrSf+KFItI5L7Vz4jcV6P

Score

7^/10

Malware Config

Targets

- Target
  
  166ec6d652868c9e7760976dc2458655ca15c6da2b2dcc767820b079da76fe81.exe
- Size
  
  1.3MB
- MD5
  
  79deee81f5bbea4e423490a1b122c90c
- SHA1
  
  49f5b097f733601d67583919c9b4563fab26599d
- SHA256
  
  166ec6d652868c9e7760976dc2458655ca15c6da2b2dcc767820b079da76fe81
- SHA512
  
  83e167b624384ab3dae5ab2d3686befa06b7e868a223d7d69af89374a59ac9a3eb9f11ce582d83d002a1ed0ec1b7f6a14390000872f45a8d8a93578b78bde9a5
- SSDEEP
  
  24576:tXwOrRsQkPFfuXgoUcITXSf+KFItCd5L7od2PzyMqMajcV6p0ozzrKYVpjZFG1Zw:tgwRq8XgoUcIrSf+KFItI5L7Vz4jcV6P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2