2c2a29e5bab47f847b60cf1da9e6d04d1024cf0e541530f5b71afbcc41afb4ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c2a29e5bab47f847b60cf1da9e6d04d1024cf0e541530f5b71afbcc41afb4ed
Size

26KB
Sample

221030-f8xfcseaf5
MD5

84fdf959990ca60895bca22eb7871190
SHA1

17eafa96beb7c7139f978c7448a1beba742ccf10
SHA256

2c2a29e5bab47f847b60cf1da9e6d04d1024cf0e541530f5b71afbcc41afb4ed
SHA512

47703af6aae7f1396507886446ca1e2dea1e9c4d26f260e635fe22e9a382db2a8edf907456461b6d5f1c6241064f50b83dfee86609fa2d676a18fd74f96597d6
SSDEEP

384:cJK3FwyHsmev9n96oTlzcFihsHReNWpgVQYAvxw+Z:qK3psxrJzcFiAgWSrAvh

Score

8^/10

Malware Config

Targets

- Target
  
  2c2a29e5bab47f847b60cf1da9e6d04d1024cf0e541530f5b71afbcc41afb4ed
- Size
  
  26KB
- MD5
  
  84fdf959990ca60895bca22eb7871190
- SHA1
  
  17eafa96beb7c7139f978c7448a1beba742ccf10
- SHA256
  
  2c2a29e5bab47f847b60cf1da9e6d04d1024cf0e541530f5b71afbcc41afb4ed
- SHA512
  
  47703af6aae7f1396507886446ca1e2dea1e9c4d26f260e635fe22e9a382db2a8edf907456461b6d5f1c6241064f50b83dfee86609fa2d676a18fd74f96597d6
- SSDEEP
  
  384:cJK3FwyHsmev9n96oTlzcFihsHReNWpgVQYAvxw+Z:qK3psxrJzcFiAgWSrAvh
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2