fbf450c45370de4fcf249495700c1d3d3be29edb44cb9b468cfafc7ba42172f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fbf450c45370de4fcf249495700c1d3d3be29edb44cb9b468cfafc7ba42172f1
Size

17KB
Sample

221020-sq37eabdh6
MD5

a06a13d0bb4d4d7b7edb8a0ba0b6f1c0
SHA1

f29acbf131391408206fffea6b65b86e876ee9f8
SHA256

fbf450c45370de4fcf249495700c1d3d3be29edb44cb9b468cfafc7ba42172f1
SHA512

b31c8cddcf6088f2d447430c16ef0f0d42ff3bc41fa676485be6afe9f14a90cffcdf1c11b8b33f10b2483c0721cc21ad8ad582743f58c80fb638877bff0b3a3f
SSDEEP

192:uMtTRw9DFjvJ7Eh/f+cbmYb8Wg5UqrUwkunhn2MJGEyog1MM4APTK7YyTw:u2T+/jvJ7+gFrJk04OMcYys

Score

8^/10

Malware Config

Targets

- Target
  
  fbf450c45370de4fcf249495700c1d3d3be29edb44cb9b468cfafc7ba42172f1
- Size
  
  17KB
- MD5
  
  a06a13d0bb4d4d7b7edb8a0ba0b6f1c0
- SHA1
  
  f29acbf131391408206fffea6b65b86e876ee9f8
- SHA256
  
  fbf450c45370de4fcf249495700c1d3d3be29edb44cb9b468cfafc7ba42172f1
- SHA512
  
  b31c8cddcf6088f2d447430c16ef0f0d42ff3bc41fa676485be6afe9f14a90cffcdf1c11b8b33f10b2483c0721cc21ad8ad582743f58c80fb638877bff0b3a3f
- SSDEEP
  
  192:uMtTRw9DFjvJ7Eh/f+cbmYb8Wg5UqrUwkunhn2MJGEyog1MM4APTK7YyTw:u2T+/jvJ7+gFrJk04OMcYys
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2