f6fcac10f90301fded82d28022cafdf163c1fe3fd1256e22881d42caad100ef0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6fcac10f90301fded82d28022cafdf163c1fe3fd1256e22881d42caad100ef0
Size

153KB
Sample

221201-qbhk2saf39
MD5

b0243a1d988e5098957056b42522cc4d
SHA1

f6a10e09e714e3b61d2d338f86c5fdd97ce4c9fb
SHA256

f6fcac10f90301fded82d28022cafdf163c1fe3fd1256e22881d42caad100ef0
SHA512

22ee4726d55219c5ca291dc8409c6044252a05ceccc4676e1534a2c326bb40fb8552a21e2814ee09ab82c1aa29ca2be9bd48001377125f466723a9d4b2d795d8
SSDEEP

3072:3u2PY/bNP86wgQksh1yqE2/pDIDByysDXetyZa/9VGShOHT:VPY/bNPbsHyqE2/SDByysTetga/yHT

Score

8^/10

Malware Config

Targets

- Target
  
  f6fcac10f90301fded82d28022cafdf163c1fe3fd1256e22881d42caad100ef0
- Size
  
  153KB
- MD5
  
  b0243a1d988e5098957056b42522cc4d
- SHA1
  
  f6a10e09e714e3b61d2d338f86c5fdd97ce4c9fb
- SHA256
  
  f6fcac10f90301fded82d28022cafdf163c1fe3fd1256e22881d42caad100ef0
- SHA512
  
  22ee4726d55219c5ca291dc8409c6044252a05ceccc4676e1534a2c326bb40fb8552a21e2814ee09ab82c1aa29ca2be9bd48001377125f466723a9d4b2d795d8
- SSDEEP
  
  3072:3u2PY/bNP86wgQksh1yqE2/pDIDByysDXetyZa/9VGShOHT:VPY/bNPbsHyqE2/SDByysTetga/yHT
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2