cff8cc8eb6f8eca78be206822297a52adf7df82794f3fb3980dd325990948f76 | Triage

Sharing

General

Target

cff8cc8eb6f8eca78be206822297a52adf7df82794f3fb3980dd325990948f76
Size

92KB
Sample

221029-3zbtmadbep
MD5

9378db4c72ba643d08270abd7b7f4329
SHA1

be3def37984cd188b105fcdce090d4c60d1ae74c
SHA256

cff8cc8eb6f8eca78be206822297a52adf7df82794f3fb3980dd325990948f76
SHA512

12a3251267f524e159e81abd5541c477f3e46d13f2ebaa89ddc3973c255fbd248a1b26942aaa6df05c372bb3cc997de1754827e1b24dae8ab5eb2511b79e22d9
SSDEEP

768:v9IXHugT0lvlq/P1vwwrnkjBt1VJk8vK8GSdrD9wGy241ZUb/CxhYLJP30UOEGaK:1cPuB3mUbaxeLd4IfmkBwC8BD+KBq2x

Score

7^/10

Malware Config

Targets

- Target
  
  cff8cc8eb6f8eca78be206822297a52adf7df82794f3fb3980dd325990948f76
- Size
  
  92KB
- MD5
  
  9378db4c72ba643d08270abd7b7f4329
- SHA1
  
  be3def37984cd188b105fcdce090d4c60d1ae74c
- SHA256
  
  cff8cc8eb6f8eca78be206822297a52adf7df82794f3fb3980dd325990948f76
- SHA512
  
  12a3251267f524e159e81abd5541c477f3e46d13f2ebaa89ddc3973c255fbd248a1b26942aaa6df05c372bb3cc997de1754827e1b24dae8ab5eb2511b79e22d9
- SSDEEP
  
  768:v9IXHugT0lvlq/P1vwwrnkjBt1VJk8vK8GSdrD9wGy241ZUb/CxhYLJP30UOEGaK:1cPuB3mUbaxeLd4IfmkBwC8BD+KBq2x
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2