9fed1bde2fdc70716ab643af71f2324cb9ebd8ece9393833d0708ffd49151a3d | Triage

Submit
Reports

Overview

overview

8

Static

static

SigmaRegular.ttf

windows10-2004-x64

8

Sharing

General

Target

SigmaRegular.ttf
Size

262KB
Sample

221004-t4tqkabed4
MD5

9c56d3bf419bd16c02c6ad984eabb804
SHA1

c9e9df21ba5de6cebd565548af2e406c7e170d87
SHA256

9fed1bde2fdc70716ab643af71f2324cb9ebd8ece9393833d0708ffd49151a3d
SHA512

b89b7bfc621dbe70c34d6c6e753d237eae8b25514f4544891ea78eefaee932d1d2e66cb8d188d3d782ff3e722c19e4f28c467174cdb40e4b80cbe48593419b48
SSDEEP

3072:TQP+lH2jdgyy+L54i7gIrxb03SjXtqTJbsA5:TQP+YCG4i7tb0DJbsA5

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

SigmaRegular.ttf

Resource

win10v2004-20220901-en

windows10-2004-x64

11 signatures

1800 seconds

Malware Config

Targets

- Target
  
  SigmaRegular.ttf
- Size
  
  262KB
- MD5
  
  9c56d3bf419bd16c02c6ad984eabb804
- SHA1
  
  c9e9df21ba5de6cebd565548af2e406c7e170d87
- SHA256
  
  9fed1bde2fdc70716ab643af71f2324cb9ebd8ece9393833d0708ffd49151a3d
- SHA512
  
  b89b7bfc621dbe70c34d6c6e753d237eae8b25514f4544891ea78eefaee932d1d2e66cb8d188d3d782ff3e722c19e4f28c467174cdb40e4b80cbe48593419b48
- SSDEEP
  
  3072:TQP+lH2jdgyy+L54i7gIrxb03SjXtqTJbsA5:TQP+YCG4i7tb0DJbsA5
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2025

Terms | Privacy