bdd941aca82cb461cf9af2ffa1f836c43c60d4e0f0cbf63c552a8607bd6579dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdd941aca82cb461cf9af2ffa1f836c43c60d4e0f0cbf63c552a8607bd6579dc
Size

927KB
Sample

221202-v1svjacf9y
MD5

74a2f1b40675804ba89fbb892410534d
SHA1

f6fd1cac2fcb8b5452c7350b916e4ebc80566dbf
SHA256

bdd941aca82cb461cf9af2ffa1f836c43c60d4e0f0cbf63c552a8607bd6579dc
SHA512

b18c073d2ccb026c301b417dcc58df3e6e4c5d55083cdc496862ce501c87f6faa3697fcd9f0d87d4d1cb7c266193bb3fc10024505a59cc62c606a074939b9648
SSDEEP

12288:SV+mz1OoDlM9KSxZXHrDlM9JWpu3v4rP4DShqw55h3CO4mDpHgSuYC5RxiX:S8irmtXH9mJ7+O+55hJ4ipHNuYC50

Score

8^/10

Malware Config

Targets

- Target
  
  bdd941aca82cb461cf9af2ffa1f836c43c60d4e0f0cbf63c552a8607bd6579dc
- Size
  
  927KB
- MD5
  
  74a2f1b40675804ba89fbb892410534d
- SHA1
  
  f6fd1cac2fcb8b5452c7350b916e4ebc80566dbf
- SHA256
  
  bdd941aca82cb461cf9af2ffa1f836c43c60d4e0f0cbf63c552a8607bd6579dc
- SHA512
  
  b18c073d2ccb026c301b417dcc58df3e6e4c5d55083cdc496862ce501c87f6faa3697fcd9f0d87d4d1cb7c266193bb3fc10024505a59cc62c606a074939b9648
- SSDEEP
  
  12288:SV+mz1OoDlM9KSxZXHrDlM9JWpu3v4rP4DShqw55h3CO4mDpHgSuYC5RxiX:S8irmtXH9mJ7+O+55hJ4ipHNuYC50
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2