cf7ef892e693858fdcb960bf59b59de212a026f7448d0ba37f545f758955bef0 | Triage

Sharing

General

Target

cf7ef892e693858fdcb960bf59b59de212a026f7448d0ba37f545f758955bef0
Size

105KB
Sample

221203-e34rtahd2x
MD5

07d29efa3f74bcf313aaf3447bbb5140
SHA1

13308817ca961ad96b29043e10072ff965aef9fb
SHA256

cf7ef892e693858fdcb960bf59b59de212a026f7448d0ba37f545f758955bef0
SHA512

ea2c83422079dcc3447e079411d63be3e4b60745ecaa4dfbdec32d6191aaec0224674e27aec7fb4ee7a306393522e7983dfcaa7bd010fef8464cc9ca6cafddc6
SSDEEP

3072:3ZlsN/vCtko2SYgnZoRHdrHx5GXBwLWNIW:JlsNJo2ShZoldrPGXB5IW

Score

8^/10

aspackv2

Malware Config

Targets

- Target
  
  cf7ef892e693858fdcb960bf59b59de212a026f7448d0ba37f545f758955bef0
- Size
  
  105KB
- MD5
  
  07d29efa3f74bcf313aaf3447bbb5140
- SHA1
  
  13308817ca961ad96b29043e10072ff965aef9fb
- SHA256
  
  cf7ef892e693858fdcb960bf59b59de212a026f7448d0ba37f545f758955bef0
- SHA512
  
  ea2c83422079dcc3447e079411d63be3e4b60745ecaa4dfbdec32d6191aaec0224674e27aec7fb4ee7a306393522e7983dfcaa7bd010fef8464cc9ca6cafddc6
- SSDEEP
  
  3072:3ZlsN/vCtko2SYgnZoRHdrHx5GXBwLWNIW:JlsNJo2ShZoldrPGXB5IW
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2