bc6bc85e9a55616b5bf332cddac1d71bbcdcee078e3167f4ea29462dac949d6b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc6bc85e9a55616b5bf332cddac1d71bbcdcee078e3167f4ea29462dac949d6b
Size

72KB
Sample

221004-ebnarabcd2
MD5

455a6d21c981293e592b92add242f9e0
SHA1

ce1208cfc476a2c99674e5c65ce1b9561e211ebe
SHA256

bc6bc85e9a55616b5bf332cddac1d71bbcdcee078e3167f4ea29462dac949d6b
SHA512

9ae6b1760b2c51ac9dc50258800ad3a1c6f4722f36eb6e95dbdb199186355dc7c4d10b53f6b114e6cbfa48c3058df8ebf024ac05f28518a36b19216cec4b658a
SSDEEP

768:9Yt1iSsKkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKV8E:qH8irEJycA8Dy9Suo6zCz

Score

7^/10

Malware Config

Targets

- Target
  
  bc6bc85e9a55616b5bf332cddac1d71bbcdcee078e3167f4ea29462dac949d6b
- Size
  
  72KB
- MD5
  
  455a6d21c981293e592b92add242f9e0
- SHA1
  
  ce1208cfc476a2c99674e5c65ce1b9561e211ebe
- SHA256
  
  bc6bc85e9a55616b5bf332cddac1d71bbcdcee078e3167f4ea29462dac949d6b
- SHA512
  
  9ae6b1760b2c51ac9dc50258800ad3a1c6f4722f36eb6e95dbdb199186355dc7c4d10b53f6b114e6cbfa48c3058df8ebf024ac05f28518a36b19216cec4b658a
- SSDEEP
  
  768:9Yt1iSsKkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKV8E:qH8irEJycA8Dy9Suo6zCz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2