8a9ff9c42361f5d5271b645362a54cf65b2a4e5e3a081fa88484e7045454eb7d | Triage

Resubmissions

11/01/2024, 11:39

240111-nsffxafahn 8

10/01/2024, 12:20

240110-phrxmafbgk 8

10/01/2024, 12:12

240110-pdkbzsfhe5 8

15/11/2023, 07:53

231115-jq57bsfg8y 8

23/04/2023, 09:14

230423-k7ma8ace43 8

Sharing

Copy URL Twitter E-mail

General

Target

CocCocSetup.exe
Size

985KB
Sample

230423-k7ma8ace43
MD5

cd555f9dedb29f37935d063e6e49a6f0
SHA1

c4eaf2cb8c86588cdc45e926a28d664d35856682
SHA256

8a9ff9c42361f5d5271b645362a54cf65b2a4e5e3a081fa88484e7045454eb7d
SHA512

cf0a6a94e281f01d59efa9a7f7b3ff2ea84a83d5461ab42a3e13555f6fcedc313555bac90a35595f81a624fe5ca316efd110bca3c5440391ebd57d67820a3f64
SSDEEP

24576:uyn6Gt4c9YPQBXui4k0vQV55SPNKN8BZ5zAjqvdWABOdbd5c:N63c9YeXuqQQkPnPlWABCB5c

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  CocCocSetup.exe
- Size
  
  985KB
- MD5
  
  cd555f9dedb29f37935d063e6e49a6f0
- SHA1
  
  c4eaf2cb8c86588cdc45e926a28d664d35856682
- SHA256
  
  8a9ff9c42361f5d5271b645362a54cf65b2a4e5e3a081fa88484e7045454eb7d
- SHA512
  
  cf0a6a94e281f01d59efa9a7f7b3ff2ea84a83d5461ab42a3e13555f6fcedc313555bac90a35595f81a624fe5ca316efd110bca3c5440391ebd57d67820a3f64
- SSDEEP
  
  24576:uyn6Gt4c9YPQBXui4k0vQV55SPNKN8BZ5zAjqvdWABOdbd5c:N63c9YeXuqQQkPnPlWABCB5c
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Registers COM server for autorun
  persistence
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1