8c0ccafdb475b83abd3d46e122647a14243d3e5ac0d612f969f933b9991fbab4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c0ccafdb475b83abd3d46e122647a14243d3e5ac0d612f969f933b9991fbab4
Size

200KB
Sample

220918-246n5aaaan
MD5

d35660ddcc59aa1cb44af40d84c2f781
SHA1

8639e49c5cba383f3ffcba7c171f27230eab0061
SHA256

8c0ccafdb475b83abd3d46e122647a14243d3e5ac0d612f969f933b9991fbab4
SHA512

f3f003fe33ebf708c3af6fe37a311671c16478f69092bc93d620c98d0dbc9abcee6bfc27d298690d76a2bb51df21670150af38a282ff7834ffebc2e990593377
SSDEEP

6144:AZuuObR8sVImcyYC5Jlgo3gVlHUPUK9aahvkPxyLNRr:3V+mzeGg3U7aaScNRr

Score

8^/10

Malware Config

Targets

- Target
  
  8c0ccafdb475b83abd3d46e122647a14243d3e5ac0d612f969f933b9991fbab4
- Size
  
  200KB
- MD5
  
  d35660ddcc59aa1cb44af40d84c2f781
- SHA1
  
  8639e49c5cba383f3ffcba7c171f27230eab0061
- SHA256
  
  8c0ccafdb475b83abd3d46e122647a14243d3e5ac0d612f969f933b9991fbab4
- SHA512
  
  f3f003fe33ebf708c3af6fe37a311671c16478f69092bc93d620c98d0dbc9abcee6bfc27d298690d76a2bb51df21670150af38a282ff7834ffebc2e990593377
- SSDEEP
  
  6144:AZuuObR8sVImcyYC5Jlgo3gVlHUPUK9aahvkPxyLNRr:3V+mzeGg3U7aaScNRr
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2