cefae61756fd04a5a3c3fa18818220cb634f0ed9f205baed6eb223776d509cef | Triage

Sharing

General

Target

cefae61756fd04a5a3c3fa18818220cb634f0ed9f205baed6eb223776d509cef
Size

100KB
Sample

221204-kytzpsea27
MD5

e9ebb89f9ab68eb2a7cdf4a83eac3404
SHA1

32173042cd9e465959187926ca5e4c0ff5c15a83
SHA256

cefae61756fd04a5a3c3fa18818220cb634f0ed9f205baed6eb223776d509cef
SHA512

0ab88fa5b0393637007f1ed3af929fe47ea7e5eb2dd159d57bbd54604af489c8ae6d18d06eb66272ddcec87b2170373784ac9cc4e95d84ea22862a1e13357ba2
SSDEEP

1536:2IlwXP+CmfyUZcCdgO0qcfFhLQAE5U3u4Re1FAdlMWoG3nQFe3WU/7p/N1/uXWI:RGXLVUiCWUcDLbX4wdHhnQXU1zmXWI

Score

8^/10

Malware Config

Targets

- Target
  
  cefae61756fd04a5a3c3fa18818220cb634f0ed9f205baed6eb223776d509cef
- Size
  
  100KB
- MD5
  
  e9ebb89f9ab68eb2a7cdf4a83eac3404
- SHA1
  
  32173042cd9e465959187926ca5e4c0ff5c15a83
- SHA256
  
  cefae61756fd04a5a3c3fa18818220cb634f0ed9f205baed6eb223776d509cef
- SHA512
  
  0ab88fa5b0393637007f1ed3af929fe47ea7e5eb2dd159d57bbd54604af489c8ae6d18d06eb66272ddcec87b2170373784ac9cc4e95d84ea22862a1e13357ba2
- SSDEEP
  
  1536:2IlwXP+CmfyUZcCdgO0qcfFhLQAE5U3u4Re1FAdlMWoG3nQFe3WU/7p/N1/uXWI:RGXLVUiCWUcDLbX4wdHhnQXU1zmXWI
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Command-Line Interface

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2