2e8c41f782f2440d66163eae97c993eefeb785737076efbfddd6178975044db8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e8c41f782f2440d66163eae97c993eefeb785737076efbfddd6178975044db8
Size

28KB
Sample

221121-sjekgaeh49
MD5

328e6e941b66ec19b4f581d214dbb272
SHA1

ceb071b95477d10d21b7fe553920b818d0b23e76
SHA256

2e8c41f782f2440d66163eae97c993eefeb785737076efbfddd6178975044db8
SHA512

2c4200653b1a9f2b13294527f1ce6459fd90e919595d9214e36c5decb4b733e215af6d4fd59769e02aa7047bfdb880ce000c36e72c406c03c576c017a430fd5e
SSDEEP

384:/T+UxLd9sn+G+DLuz+7C+EA3TzzQKXYFlzQKXvFlTGHl3ptDr4qYso7:/S8Lrs9/zzqvzQvQqGHJsqk

Score

8^/10

Malware Config

Targets

- Target
  
  2e8c41f782f2440d66163eae97c993eefeb785737076efbfddd6178975044db8
- Size
  
  28KB
- MD5
  
  328e6e941b66ec19b4f581d214dbb272
- SHA1
  
  ceb071b95477d10d21b7fe553920b818d0b23e76
- SHA256
  
  2e8c41f782f2440d66163eae97c993eefeb785737076efbfddd6178975044db8
- SHA512
  
  2c4200653b1a9f2b13294527f1ce6459fd90e919595d9214e36c5decb4b733e215af6d4fd59769e02aa7047bfdb880ce000c36e72c406c03c576c017a430fd5e
- SSDEEP
  
  384:/T+UxLd9sn+G+DLuz+7C+EA3TzzQKXYFlzQKXvFlTGHl3ptDr4qYso7:/S8Lrs9/zzqvzQvQqGHJsqk
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2