fdcf0f3acc31f0130aa3a0df8923d6110aeb61b580695c070de4fe8e93c8809a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdcf0f3acc31f0130aa3a0df8923d6110aeb61b580695c070de4fe8e93c8809a
Size

1.8MB
Sample

221009-2m6mssabb8
MD5

26968ecbcfdd8dc12250800336e3399f
SHA1

b92090c0ef436bb6b3831778bb1a952aa7896a95
SHA256

fdcf0f3acc31f0130aa3a0df8923d6110aeb61b580695c070de4fe8e93c8809a
SHA512

b889ca5b24dcac9598405ac3576d9ec9939fb4bf3f8d6b10cc4a4a935d0bbe733732e04c5ed4a83bddc3f2a9479dcdabe8ec2f9508a168ab7f63c89b7969d2fa
SSDEEP

49152:KyzoRKcL2mibZIZ4AXcIA6PZgT+Q6SbFFymq:Ky8KZDbm4McIZgF6yVq

Score

7^/10

Malware Config

Targets

- Target
  
  fdcf0f3acc31f0130aa3a0df8923d6110aeb61b580695c070de4fe8e93c8809a
- Size
  
  1.8MB
- MD5
  
  26968ecbcfdd8dc12250800336e3399f
- SHA1
  
  b92090c0ef436bb6b3831778bb1a952aa7896a95
- SHA256
  
  fdcf0f3acc31f0130aa3a0df8923d6110aeb61b580695c070de4fe8e93c8809a
- SHA512
  
  b889ca5b24dcac9598405ac3576d9ec9939fb4bf3f8d6b10cc4a4a935d0bbe733732e04c5ed4a83bddc3f2a9479dcdabe8ec2f9508a168ab7f63c89b7969d2fa
- SSDEEP
  
  49152:KyzoRKcL2mibZIZ4AXcIA6PZgT+Q6SbFFymq:Ky8KZDbm4McIZgF6yVq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1