ad0fcfb54c4285cb77b276f330f5fb86ad922571924497a2a776cbc7cd039888 | Triage

Sharing

General

Target

ad0fcfb54c4285cb77b276f330f5fb86ad922571924497a2a776cbc7cd039888
Size

20KB
Sample

221011-f8sr6sgffm
MD5

1754e8e86d1b38036085275fa1f63c61
SHA1

216679cdeb431e73b9f8414baaba60a52a251144
SHA256

ad0fcfb54c4285cb77b276f330f5fb86ad922571924497a2a776cbc7cd039888
SHA512

5909be6b6b565d3c81ec7a9a4634fdcab569f769b185084870ccafca11afafcbeae54a5a9c871f4a10b04e02a8f3fb809d5282fab367508a4e0a20221567df14
SSDEEP

192:pkGn3SNG6ZiG4Iwl9ZPxSUjoB/1PBhZI3v7KI8LmUSr5BwntaDE9hCEqQXUv:pkoDpm0q/1PPZW2I8LmRNBnDCc

Score

8^/10

Malware Config

Targets

- Target
  
  ad0fcfb54c4285cb77b276f330f5fb86ad922571924497a2a776cbc7cd039888
- Size
  
  20KB
- MD5
  
  1754e8e86d1b38036085275fa1f63c61
- SHA1
  
  216679cdeb431e73b9f8414baaba60a52a251144
- SHA256
  
  ad0fcfb54c4285cb77b276f330f5fb86ad922571924497a2a776cbc7cd039888
- SHA512
  
  5909be6b6b565d3c81ec7a9a4634fdcab569f769b185084870ccafca11afafcbeae54a5a9c871f4a10b04e02a8f3fb809d5282fab367508a4e0a20221567df14
- SSDEEP
  
  192:pkGn3SNG6ZiG4Iwl9ZPxSUjoB/1PBhZI3v7KI8LmUSr5BwntaDE9hCEqQXUv:pkoDpm0q/1PPZW2I8LmRNBnDCc
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2