fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33 | Triage

Submit
Reports

Overview

overview

8

Static

static

fdcb6cb3d2...33.exe

windows7-x64

8

fdcb6cb3d2...33.exe

windows10-2004-x64

8

Sharing

General

Target

fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33
Size

146KB
Sample

221012-tv45yabcdn
MD5

668a21b4430dcc47c6e1418e6f2a3920
SHA1

0082e47ae4e013fb8addbd54b997b3923e0a70bb
SHA256

fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33
SHA512

054ac943587589522c6500b9705cae05d57ec3459c72e6bde9f6234b14b30b33f65c977f00f7710550542cd43101919b32e686880503c6e35b425b6aba81bfc2
SSDEEP

3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0h/BemcM91h0eK0Fj:3bXE9OiTGfhEClq9gZ91hBK8

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33.exe

Resource

win7-20220812-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33
- Size
  
  146KB
- MD5
  
  668a21b4430dcc47c6e1418e6f2a3920
- SHA1
  
  0082e47ae4e013fb8addbd54b997b3923e0a70bb
- SHA256
  
  fdcb6cb3d24c339febfd40fa63b59a1233485f7121bbf45d37318785c06eba33
- SHA512
  
  054ac943587589522c6500b9705cae05d57ec3459c72e6bde9f6234b14b30b33f65c977f00f7710550542cd43101919b32e686880503c6e35b425b6aba81bfc2
- SSDEEP
  
  3072:ABAp5XhKpN4eOyVTGfhEClj8jTk+0h/BemcM91h0eK0Fj:3bXE9OiTGfhEClq9gZ91hBK8
Score

8^/10

discovery
- Blocklisted process makes network request
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy