cfbe869ac043125bcf7609cb6d040263abc416349c35dd72db8a3753d68893d0 | Triage

Sharing

General

Target

cfbe869ac043125bcf7609cb6d040263abc416349c35dd72db8a3753d68893d0
Size

702KB
Sample

230724-lnqpzacf6t
MD5

8555b5c76fadff58dddec3d0ce9e1ce0
SHA1

4ebec9a598d3e0d9f23043dcc365de58d89f5769
SHA256

cfbe869ac043125bcf7609cb6d040263abc416349c35dd72db8a3753d68893d0
SHA512

96631a2b7af42f81097c8df704e7e49f6d5e1fbc18588ad259ea9a6e7c1101e6afd09f1639513cc8850ee702c9f1a1818cfb1f8a3251a0441070fcf23879839e
SSDEEP

12288:DGHCnaomAEg3uPdkgOX+tZdxQ6Vi+UXcl8aQktL1Kozg5ShgIM:DGHCm8uPdJFd/VizcFQkD786g5

Score

7^/10

Malware Config

Targets

- Target
  
  cfbe869ac043125bcf7609cb6d040263abc416349c35dd72db8a3753d68893d0
- Size
  
  702KB
- MD5
  
  8555b5c76fadff58dddec3d0ce9e1ce0
- SHA1
  
  4ebec9a598d3e0d9f23043dcc365de58d89f5769
- SHA256
  
  cfbe869ac043125bcf7609cb6d040263abc416349c35dd72db8a3753d68893d0
- SHA512
  
  96631a2b7af42f81097c8df704e7e49f6d5e1fbc18588ad259ea9a6e7c1101e6afd09f1639513cc8850ee702c9f1a1818cfb1f8a3251a0441070fcf23879839e
- SSDEEP
  
  12288:DGHCnaomAEg3uPdkgOX+tZdxQ6Vi+UXcl8aQktL1Kozg5ShgIM:DGHCm8uPdJFd/VizcFQkD786g5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2