f6fcb47d058b863e2926e0a24ea1c6bb94effe34858b029aabfbfd457fa3c7c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

27468acab51385729738be5172ef5ce1.bin.exe
Size

6.6MB
Sample

230310-hfr2aaca28
MD5

27468acab51385729738be5172ef5ce1
SHA1

22cc8976f07200c5f013f4dac189a76b7f369b5c
SHA256

f6fcb47d058b863e2926e0a24ea1c6bb94effe34858b029aabfbfd457fa3c7c4
SHA512

0d87628a696c7d8ee04258b1f4b184f661d94fb0a0e7fdc12ede30825acdf1fa0359802a0c21a637fb695ff6f87be10f7afdeb6fa9eace25ae2da486c9867bf6
SSDEEP

49152:Dj7nD9DEBcaKIG081IITIklIfgUVjWKQB+yCwLJYq2GQhJf4YiL1eGmJZa6HEydF:

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  27468acab51385729738be5172ef5ce1.bin.exe
- Size
  
  6.6MB
- MD5
  
  27468acab51385729738be5172ef5ce1
- SHA1
  
  22cc8976f07200c5f013f4dac189a76b7f369b5c
- SHA256
  
  f6fcb47d058b863e2926e0a24ea1c6bb94effe34858b029aabfbfd457fa3c7c4
- SHA512
  
  0d87628a696c7d8ee04258b1f4b184f661d94fb0a0e7fdc12ede30825acdf1fa0359802a0c21a637fb695ff6f87be10f7afdeb6fa9eace25ae2da486c9867bf6
- SSDEEP
  
  49152:Dj7nD9DEBcaKIG081IITIklIfgUVjWKQB+yCwLJYq2GQhJf4YiL1eGmJZa6HEydF:
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2