c206979a2fd6dffd63299f515736d1f82316b97a81bc4182c46e5b46778b19f3 | Triage

Sharing

General

Target

c206979a2fd6dffd63299f515736d1f82316b97a81bc4182c46e5b46778b19f3N
Size

57KB
Sample

240919-f7c1bstbmq
MD5

96a67aaf1e443c678e611fe62633d160
SHA1

662ca2ffd28ca0c7931d7de1408f87161c42deae
SHA256

c206979a2fd6dffd63299f515736d1f82316b97a81bc4182c46e5b46778b19f3
SHA512

57dba16ffc9e70b0843acdbff5029b61db490ebb9ffdc1faab464a88041253050956ec2b789992dae5e468c8b94ebc9590cbd3fd8cbb7e3e309646634233f446
SSDEEP

768:MApQr0zvdFJI34iGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7iTq:MAaEJlosh7pWezEPJB+Oeu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  c206979a2fd6dffd63299f515736d1f82316b97a81bc4182c46e5b46778b19f3N
- Size
  
  57KB
- MD5
  
  96a67aaf1e443c678e611fe62633d160
- SHA1
  
  662ca2ffd28ca0c7931d7de1408f87161c42deae
- SHA256
  
  c206979a2fd6dffd63299f515736d1f82316b97a81bc4182c46e5b46778b19f3
- SHA512
  
  57dba16ffc9e70b0843acdbff5029b61db490ebb9ffdc1faab464a88041253050956ec2b789992dae5e468c8b94ebc9590cbd3fd8cbb7e3e309646634233f446
- SSDEEP
  
  768:MApQr0zvdFJI34iGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7iTq:MAaEJlosh7pWezEPJB+Oeu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2