2f8075dc306aeccdfffd65fdcfe53281f173e79da27791c1a5418add22767b04 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f8075dc306aeccdfffd65fdcfe53281f173e79da27791c1a5418add22767b04
Size

31KB
Sample

221204-qm17jace66
MD5

7c0b35083b9f680062f06b7e20b4531c
SHA1

1f7738977fcc945ea1a1444c25440559af4e507b
SHA256

2f8075dc306aeccdfffd65fdcfe53281f173e79da27791c1a5418add22767b04
SHA512

b52fd7dc83ad9197795957a3b35ebb70582ec25fe418b0924bdda16ade723244d5b726a0726c04da516147974a09dbc102da4e84499f2278d18e79842cf744d7
SSDEEP

384:5gOhwcyH6leGAQ6EVxDJ42XJ/J2kiERJGRnA5qlbYqvCV7O/TTDDnn9WYrK9LUd0:5gOruQ6EV9LXJBLi4gGHO/3DDcRZUd

Score

8^/10

Malware Config

Targets

- Target
  
  2f8075dc306aeccdfffd65fdcfe53281f173e79da27791c1a5418add22767b04
- Size
  
  31KB
- MD5
  
  7c0b35083b9f680062f06b7e20b4531c
- SHA1
  
  1f7738977fcc945ea1a1444c25440559af4e507b
- SHA256
  
  2f8075dc306aeccdfffd65fdcfe53281f173e79da27791c1a5418add22767b04
- SHA512
  
  b52fd7dc83ad9197795957a3b35ebb70582ec25fe418b0924bdda16ade723244d5b726a0726c04da516147974a09dbc102da4e84499f2278d18e79842cf744d7
- SSDEEP
  
  384:5gOhwcyH6leGAQ6EVxDJ42XJ/J2kiERJGRnA5qlbYqvCV7O/TTDDnn9WYrK9LUd0:5gOruQ6EV9LXJBLi4gGHO/3DDcRZUd
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2