ca473f54bd4c34ea40e7e662b9449a9d85b7e844010dad2edf3b9325adad2404 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ca473f54bd4c34ea40e7e662b9449a9d85b7e844010dad2edf3b9325adad2404
Size

541KB
Sample

221011-3pbe4sbdfq
MD5

6f9f866ff6a695ce7640b1f0ec6a5dc0
SHA1

f0cc35e88d8ebe442d9595ea38ed5da7f5a31775
SHA256

ca473f54bd4c34ea40e7e662b9449a9d85b7e844010dad2edf3b9325adad2404
SHA512

e757b09bddbc5fbc444b7e276456f42b9850c26ac1e5a0430d8492c3b177e1a4877c5bda32940f62a4cc1bd9d7dbb34817913f97bf6ef13e50af04afa3edbcdc
SSDEEP

12288:tVOQcNRBIcArtmiwHnp8neREpu2fR4Z0u19M/:tA7B85wHpueupu2fR7uTM/

Score

8^/10

Malware Config

Targets

- Target
  
  ca473f54bd4c34ea40e7e662b9449a9d85b7e844010dad2edf3b9325adad2404
- Size
  
  541KB
- MD5
  
  6f9f866ff6a695ce7640b1f0ec6a5dc0
- SHA1
  
  f0cc35e88d8ebe442d9595ea38ed5da7f5a31775
- SHA256
  
  ca473f54bd4c34ea40e7e662b9449a9d85b7e844010dad2edf3b9325adad2404
- SHA512
  
  e757b09bddbc5fbc444b7e276456f42b9850c26ac1e5a0430d8492c3b177e1a4877c5bda32940f62a4cc1bd9d7dbb34817913f97bf6ef13e50af04afa3edbcdc
- SSDEEP
  
  12288:tVOQcNRBIcArtmiwHnp8neREpu2fR4Z0u19M/:tA7B85wHpueupu2fR7uTM/
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2