26a8d4df4b140b5661e0c2ba50e9c041304ed235cb1cdcad72d57d9bbc8d3d5e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

005c0fd01a93c52b51b1dd0c55558016
Size

26KB
Sample

220920-t9pc2adha8
MD5

005c0fd01a93c52b51b1dd0c55558016
SHA1

538f9deb46b5e3a0e03b11998490a7eb9432f999
SHA256

26a8d4df4b140b5661e0c2ba50e9c041304ed235cb1cdcad72d57d9bbc8d3d5e
SHA512

57b079db7bde1f286495b0cb52e11e12ab7213f5d301ba1dd6affa407be9c730223d9f026a81ffd76856986bcc389de8c81db6d95f442543321033ab96e68f22
SSDEEP

384:uhLCP1R8XnzvuwT0pZwBeH7lQDizU11eN1:cCcvuwU6eHhQDi414

Score

8^/10

Malware Config

Targets

- Target
  
  005c0fd01a93c52b51b1dd0c55558016
- Size
  
  26KB
- MD5
  
  005c0fd01a93c52b51b1dd0c55558016
- SHA1
  
  538f9deb46b5e3a0e03b11998490a7eb9432f999
- SHA256
  
  26a8d4df4b140b5661e0c2ba50e9c041304ed235cb1cdcad72d57d9bbc8d3d5e
- SHA512
  
  57b079db7bde1f286495b0cb52e11e12ab7213f5d301ba1dd6affa407be9c730223d9f026a81ffd76856986bcc389de8c81db6d95f442543321033ab96e68f22
- SSDEEP
  
  384:uhLCP1R8XnzvuwT0pZwBeH7lQDizU11eN1:cCcvuwU6eHhQDi414
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2