cf348c6a92680ceaaa3f34472fffc9653bd4e39cef6020577e44a12ab20c6560 | Triage

Sharing

General

Target

cf348c6a92680ceaaa3f34472fffc9653bd4e39cef6020577e44a12ab20c6560
Size

70KB
Sample

221020-x7wacabdfp
MD5

4efdc031b019cc167cd0f11d0021d990
SHA1

ef1cba4f415cf65eb656d971154687bb2a8f64b2
SHA256

cf348c6a92680ceaaa3f34472fffc9653bd4e39cef6020577e44a12ab20c6560
SHA512

1f97031756dab7d8b6b412cb28cf2b4a8b4c28d751904b750f4afb79fceb7e9fb5d805f21617bad96872c2edcf09b49c23cf568487dd2661ec2db7d0394f574d
SSDEEP

1536:zhX8slAtdbaYmcl85Bg2MyqlqfgeX7xIpIE7Zf4neAtFX1pNy:zd8qIbjm75jMyqkvxqCnntBU

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  cf348c6a92680ceaaa3f34472fffc9653bd4e39cef6020577e44a12ab20c6560
- Size
  
  70KB
- MD5
  
  4efdc031b019cc167cd0f11d0021d990
- SHA1
  
  ef1cba4f415cf65eb656d971154687bb2a8f64b2
- SHA256
  
  cf348c6a92680ceaaa3f34472fffc9653bd4e39cef6020577e44a12ab20c6560
- SHA512
  
  1f97031756dab7d8b6b412cb28cf2b4a8b4c28d751904b750f4afb79fceb7e9fb5d805f21617bad96872c2edcf09b49c23cf568487dd2661ec2db7d0394f574d
- SSDEEP
  
  1536:zhX8slAtdbaYmcl85Bg2MyqlqfgeX7xIpIE7Zf4neAtFX1pNy:zd8qIbjm75jMyqkvxqCnntBU
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2