7adc97cf9381af4436a65c2b81133fa3875d2a15ab84274d4e75fa9cdcc812b6 | Triage

Sharing

General

Target

c1dc82e8bccf41b3034319d13c6b17b9.zip
Size

10KB
Sample

240901-ms1w6sycpp
MD5

f1a8d93bb9ccd2f46a900668e03f422f
SHA1

a3bb98a9c2ad3b52ff1000eea5737a402b9e2e6c
SHA256

7adc97cf9381af4436a65c2b81133fa3875d2a15ab84274d4e75fa9cdcc812b6
SHA512

63da4d73cdc1fb25650a3818b8b81ec1be90573571c2971e2964cd144cb23ca956ddb901ee91cb41ef4298251090c3d909d593140a7312e70f2a4309a06d881a
SSDEEP

192:iVpq2pUAb9Xt33B5mYSwo84+Fz6/ivDhGl8szetthXnpJHfOLSw6cF9W:iDq2pUMdnBcYSwo8JFDszeth3p01r9W

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6ee3ad880ca165e955278b7b94a5853a1785eb181a1592dce318fde748c1648d
- Size
  
  14KB
- MD5
  
  c1dc82e8bccf41b3034319d13c6b17b9
- SHA1
  
  9c06a9ff8da37f825a20a3e59ec36c8f66f82f68
- SHA256
  
  6ee3ad880ca165e955278b7b94a5853a1785eb181a1592dce318fde748c1648d
- SHA512
  
  df8302a4c42c11688226bd78ce23cd5df1596607dddbcafd81d9b87060df29e508a960b6ba1904c52b415760330c5e368da7bb0d87f0657b6121ba4d92003c8d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYfQI:hDXWipuE+K3/SSHgxmfT
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2