c9de6cbac5cc667a3f46dc0473c4a66b1e68c17d9861659d1551174c89974bc3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c9de6cbac5cc667a3f46dc0473c4a66b1e68c17d9861659d1551174c89974bc3
Size

920KB
Sample

221106-pat21sdabm
MD5

00cccaf5843b1cd35efe18db3c8c93fc
SHA1

92d4aedb4b8d895c53d6c61590bce9740a7feb90
SHA256

c9de6cbac5cc667a3f46dc0473c4a66b1e68c17d9861659d1551174c89974bc3
SHA512

72046c6e764dc6cfe4023634c5abc1c48be8e1e1506ca34f9095f49db2c877923cbdd81d9f65027b189afd407731628ff1419124f326e89f0980b22bb20d328d
SSDEEP

3072:FH4dwAyWpHclfF4QqKlo/b4QqKZHh3BilfpMEzayQU:Fo1VmqKiZqKt6

Score

8^/10

Malware Config

Targets

- Target
  
  c9de6cbac5cc667a3f46dc0473c4a66b1e68c17d9861659d1551174c89974bc3
- Size
  
  920KB
- MD5
  
  00cccaf5843b1cd35efe18db3c8c93fc
- SHA1
  
  92d4aedb4b8d895c53d6c61590bce9740a7feb90
- SHA256
  
  c9de6cbac5cc667a3f46dc0473c4a66b1e68c17d9861659d1551174c89974bc3
- SHA512
  
  72046c6e764dc6cfe4023634c5abc1c48be8e1e1506ca34f9095f49db2c877923cbdd81d9f65027b189afd407731628ff1419124f326e89f0980b22bb20d328d
- SSDEEP
  
  3072:FH4dwAyWpHclfF4QqKlo/b4QqKZHh3BilfpMEzayQU:Fo1VmqKiZqKt6
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2