cfec8735d0936c750e88bb85754d057bcbbf3a04c57a1f326797662c2aef9adc | Triage

Sharing

General

Target

cfec8735d0936c750e88bb85754d057bcbbf3a04c57a1f326797662c2aef9adc
Size

68KB
Sample

221205-k9176aef32
MD5

76292ef37f505af3f0f79a2e4d154886
SHA1

2405ed0026381d15dbb3f53a0ef399a143a344bc
SHA256

cfec8735d0936c750e88bb85754d057bcbbf3a04c57a1f326797662c2aef9adc
SHA512

25de6e5482f5d50ec20ec9b53cf01cdabddaf84f1a20502132f62d38ee6fc4c2e53e87baa3d8dd8a1c594f53724415600cb386dfbe2619863ae53a9fe1642ad1
SSDEEP

1536:/jBGTyj8QvFxKSNOJpNQRFqNQdvciyw6:rBGTe9OZAEw6

Score

7^/10

Malware Config

Targets

- Target
  
  cfec8735d0936c750e88bb85754d057bcbbf3a04c57a1f326797662c2aef9adc
- Size
  
  68KB
- MD5
  
  76292ef37f505af3f0f79a2e4d154886
- SHA1
  
  2405ed0026381d15dbb3f53a0ef399a143a344bc
- SHA256
  
  cfec8735d0936c750e88bb85754d057bcbbf3a04c57a1f326797662c2aef9adc
- SHA512
  
  25de6e5482f5d50ec20ec9b53cf01cdabddaf84f1a20502132f62d38ee6fc4c2e53e87baa3d8dd8a1c594f53724415600cb386dfbe2619863ae53a9fe1642ad1
- SSDEEP
  
  1536:/jBGTyj8QvFxKSNOJpNQRFqNQdvciyw6:rBGTe9OZAEw6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2