e22145268fac529a3546fecee89ec8661222498da85b3a5db570b98c68a8dafb | Triage

Sharing

General

Target

e22145268fac529a3546fecee89ec8661222498da85b3a5db570b98c68a8dafb
Size

64KB
Sample

241120-fge21asbpp
MD5

809fa576c7bdf2c6fbafce08b3df578e
SHA1

b2f1b5dee3669e2df3ae1f2a9de2b34b3d3166d8
SHA256

e22145268fac529a3546fecee89ec8661222498da85b3a5db570b98c68a8dafb
SHA512

953a0ab2944310f61e140e509d68a44907ca42995ac82cdcb1dbd30a9fde59b60e5ed5fbab4d8496e31599fd9c7523177b670d276dc6eafc4c2ec84d65457212
SSDEEP

768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7TyR:MAaAJlzsh7pWezEPJB+O/yR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  e22145268fac529a3546fecee89ec8661222498da85b3a5db570b98c68a8dafb
- Size
  
  64KB
- MD5
  
  809fa576c7bdf2c6fbafce08b3df578e
- SHA1
  
  b2f1b5dee3669e2df3ae1f2a9de2b34b3d3166d8
- SHA256
  
  e22145268fac529a3546fecee89ec8661222498da85b3a5db570b98c68a8dafb
- SHA512
  
  953a0ab2944310f61e140e509d68a44907ca42995ac82cdcb1dbd30a9fde59b60e5ed5fbab4d8496e31599fd9c7523177b670d276dc6eafc4c2ec84d65457212
- SSDEEP
  
  768:MApQr0DHvdFJI34nGxusOy9Rp1pLeAxoeC48PqK1OtaP6cCFzENREMZ7As7TyR:MAaAJlzsh7pWezEPJB+O/yR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2