5bdfd63e152daeb06517bc571f25177dd4327d09ca2a10095f054f7bb2df8f4a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7cb2fe58c9b16cexeexeexeex.exe
Size

56KB
Sample

230708-tsv49afc23
MD5

7cb2fe58c9b16ccedd2960538f2ef1d8
SHA1

0d743b5949fd9d5dae9c8901f3d4d2c73b8445e0
SHA256

5bdfd63e152daeb06517bc571f25177dd4327d09ca2a10095f054f7bb2df8f4a
SHA512

0b24dd30ba60a1947dcbb82c5cfc3e432066185f891580f015398d3746fc8596da19e84846f014fe600986fc18b6a179ec2b35c5a9e82b9d9df23c5ab34a1dda
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/cMFqeo9e1KfzHQ:ZzFbxmLPWQMOtEvwDpj38lD/cMAPjHQ

Score

7^/10

Malware Config

Targets

- Target
  
  7cb2fe58c9b16cexeexeexeex.exe
- Size
  
  56KB
- MD5
  
  7cb2fe58c9b16ccedd2960538f2ef1d8
- SHA1
  
  0d743b5949fd9d5dae9c8901f3d4d2c73b8445e0
- SHA256
  
  5bdfd63e152daeb06517bc571f25177dd4327d09ca2a10095f054f7bb2df8f4a
- SHA512
  
  0b24dd30ba60a1947dcbb82c5cfc3e432066185f891580f015398d3746fc8596da19e84846f014fe600986fc18b6a179ec2b35c5a9e82b9d9df23c5ab34a1dda
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjIm8lB4dCOBy/cMFqeo9e1KfzHQ:ZzFbxmLPWQMOtEvwDpj38lD/cMAPjHQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2