2f88eb0986df1a52a10a1e4870246e84db1c735989cacbdf47a2e313c91f7b7a | Triage

Sharing

General

Target

2f88eb0986df1a52a10a1e4870246e84db1c735989cacbdf47a2e313c91f7b7a
Size

112KB
Sample

221021-cecmbaffdr
MD5

5a01098fd986d7ab7ac83562bca974c0
SHA1

9b0a1724596a832720feea97ac12f64e4d4e4905
SHA256

2f88eb0986df1a52a10a1e4870246e84db1c735989cacbdf47a2e313c91f7b7a
SHA512

96faa24ca3f3ad4d500dea60c62778f8b763c941af5bbd5c1b6f1958d623e7936199f79e61b22e94e39fae4902c89ba9ecd5fdfc334d4192569f8e2ffe383ac5
SSDEEP

1536:2IPSCqKAuDi8lR7Pkv8NLT3sIJv3wZ1qNzWG1q3iYh4u6z/wU1w01AjVb:RPfWgR7sv8WIF3ebG1q3Rh4uzkF18Vb

Score

8^/10

Malware Config

Targets

- Target
  
  2f88eb0986df1a52a10a1e4870246e84db1c735989cacbdf47a2e313c91f7b7a
- Size
  
  112KB
- MD5
  
  5a01098fd986d7ab7ac83562bca974c0
- SHA1
  
  9b0a1724596a832720feea97ac12f64e4d4e4905
- SHA256
  
  2f88eb0986df1a52a10a1e4870246e84db1c735989cacbdf47a2e313c91f7b7a
- SHA512
  
  96faa24ca3f3ad4d500dea60c62778f8b763c941af5bbd5c1b6f1958d623e7936199f79e61b22e94e39fae4902c89ba9ecd5fdfc334d4192569f8e2ffe383ac5
- SSDEEP
  
  1536:2IPSCqKAuDi8lR7Pkv8NLT3sIJv3wZ1qNzWG1q3iYh4u6z/wU1w01AjVb:RPfWgR7sv8WIF3ebG1q3Rh4uzkF18Vb
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2