cbd0d68bc2eb1f5e988774d297db3a751e917dbdfc3ec0d01bbc8b108883853a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbd0d68bc2eb1f5e988774d297db3a751e917dbdfc3ec0d01bbc8b108883853a
Size

59KB
Sample

221020-16esraghe9
MD5

754273a8a8b9b0deb5c729b3a58e8460
SHA1

857715ce0bf1fcc0049305d117750620e8c5f650
SHA256

cbd0d68bc2eb1f5e988774d297db3a751e917dbdfc3ec0d01bbc8b108883853a
SHA512

0586e4e2add91dbfe9210f68956dfb7f3d8477a53749a77bc7d276494d6c6aa4162113f32dadecc5e2ef303989e634939fffeec7cccad55f9eaf580bffb785f8
SSDEEP

768:rbPK2j7KGbnkJtL4yY3cHTYlL2OsebPZByTudhXryc:rbPKk5kJtL4D3o8lL2Osebbv

Score

7^/10

Malware Config

Targets

- Target
  
  cbd0d68bc2eb1f5e988774d297db3a751e917dbdfc3ec0d01bbc8b108883853a
- Size
  
  59KB
- MD5
  
  754273a8a8b9b0deb5c729b3a58e8460
- SHA1
  
  857715ce0bf1fcc0049305d117750620e8c5f650
- SHA256
  
  cbd0d68bc2eb1f5e988774d297db3a751e917dbdfc3ec0d01bbc8b108883853a
- SHA512
  
  0586e4e2add91dbfe9210f68956dfb7f3d8477a53749a77bc7d276494d6c6aa4162113f32dadecc5e2ef303989e634939fffeec7cccad55f9eaf580bffb785f8
- SSDEEP
  
  768:rbPK2j7KGbnkJtL4yY3cHTYlL2OsebPZByTudhXryc:rbPKk5kJtL4D3o8lL2Osebbv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2