abcfde732bab204216b4c5b95f8d16cb9fa73ad409b6c905e7dae2e20d920bda | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abcfde732bab204216b4c5b95f8d16cb9fa73ad409b6c905e7dae2e20d920bda
Size

184KB
Sample

221107-gz7emsbhg5
MD5

52d7b13496beb65ba5ae67e64ba8cb8e
SHA1

2362efc8148ae0c329038c3f7e1914bf09174932
SHA256

abcfde732bab204216b4c5b95f8d16cb9fa73ad409b6c905e7dae2e20d920bda
SHA512

7b9daec2b32eb77b4cd9b47a89ae643b4d1ee248e67cf691bc35a40aea6355a0d931fe3956265b46101231b993a244ccb2b8dda77f1be442a209c01229930da9
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO31:/7BSH8zUB+nGESaaRvoB7FJNndnY

Score

8^/10

Malware Config

Targets

- Target
  
  abcfde732bab204216b4c5b95f8d16cb9fa73ad409b6c905e7dae2e20d920bda
- Size
  
  184KB
- MD5
  
  52d7b13496beb65ba5ae67e64ba8cb8e
- SHA1
  
  2362efc8148ae0c329038c3f7e1914bf09174932
- SHA256
  
  abcfde732bab204216b4c5b95f8d16cb9fa73ad409b6c905e7dae2e20d920bda
- SHA512
  
  7b9daec2b32eb77b4cd9b47a89ae643b4d1ee248e67cf691bc35a40aea6355a0d931fe3956265b46101231b993a244ccb2b8dda77f1be442a209c01229930da9
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO31:/7BSH8zUB+nGESaaRvoB7FJNndnY
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2