6cc2dccc8d8116cd1a3543bf82fa3db171b710b7e8af5800c1331e1c519e67f7 | Triage

Sharing

General

Target

6cc2dccc8d8116cd1a3543bf82fa3db171b710b7e8af5800c1331e1c519e67f7
Size

688KB
Sample

221020-hjn4ssacb6
MD5

805d047612ecdaf7a0785c31561cedc0
SHA1

4742771d36876a34cb029c7c88f7f3342c01880f
SHA256

6cc2dccc8d8116cd1a3543bf82fa3db171b710b7e8af5800c1331e1c519e67f7
SHA512

bcd3d07a7edd39bc906e7c64c6d831646e115ccddff7763acf5ea6669673ee03f4db8ac1d26fd3c6a4a221fdf95dc8fc237bc77a32a2c8128e469aa49657fe82
SSDEEP

12288:j1dlZo5y/3AbcbCRwu0KHopGv0WTTpx1aawqdL49c00I:j1dlZo5ow/p0KHopGvpr1xLgc00I

Score

8^/10

Malware Config

Targets

- Target
  
  6cc2dccc8d8116cd1a3543bf82fa3db171b710b7e8af5800c1331e1c519e67f7
- Size
  
  688KB
- MD5
  
  805d047612ecdaf7a0785c31561cedc0
- SHA1
  
  4742771d36876a34cb029c7c88f7f3342c01880f
- SHA256
  
  6cc2dccc8d8116cd1a3543bf82fa3db171b710b7e8af5800c1331e1c519e67f7
- SHA512
  
  bcd3d07a7edd39bc906e7c64c6d831646e115ccddff7763acf5ea6669673ee03f4db8ac1d26fd3c6a4a221fdf95dc8fc237bc77a32a2c8128e469aa49657fe82
- SSDEEP
  
  12288:j1dlZo5y/3AbcbCRwu0KHopGv0WTTpx1aawqdL49c00I:j1dlZo5ow/p0KHopGvpr1xLgc00I
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2