bcfcf516f4d5bba501606a341b7c49968d30ff38e4ac70282f9d65de3f8a1cc4 | Triage

Sharing

General

Target

bcfcf516f4d5bba501606a341b7c49968d30ff38e4ac70282f9d65de3f8a1cc4
Size

208KB
Sample

230608-lqwzrsed3w
MD5

f01dd54d11a6c272167e4e6deed86686
SHA1

dea19d446fcad0371e91a2b29a707b08ea593b14
SHA256

bcfcf516f4d5bba501606a341b7c49968d30ff38e4ac70282f9d65de3f8a1cc4
SHA512

6a905e706b91834af2a7adab578732119638068fdd00c5498322cd135abb2e83113eeb8e18f89bb4c6487da286089c1295aa40437ce101a80de6fb0cda604e50
SSDEEP

3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij

Score

7^/10

Malware Config

Targets

- Target
  
  bcfcf516f4d5bba501606a341b7c49968d30ff38e4ac70282f9d65de3f8a1cc4
- Size
  
  208KB
- MD5
  
  f01dd54d11a6c272167e4e6deed86686
- SHA1
  
  dea19d446fcad0371e91a2b29a707b08ea593b14
- SHA256
  
  bcfcf516f4d5bba501606a341b7c49968d30ff38e4ac70282f9d65de3f8a1cc4
- SHA512
  
  6a905e706b91834af2a7adab578732119638068fdd00c5498322cd135abb2e83113eeb8e18f89bb4c6487da286089c1295aa40437ce101a80de6fb0cda604e50
- SSDEEP
  
  3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1