ff4bd361aadb3fac9467cd0ac2d7f85b005bb24101564cb3ea9afda1eea48ace | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff4bd361aadb3fac9467cd0ac2d7f85b005bb24101564cb3ea9afda1eea48ace
Size

2.1MB
Sample

231004-j2tmnsab6w
MD5

9de39af4e97e49cd69cbb788211f0122
SHA1

6cdb0114aaf325aea15704d50ccc2d089f0040d2
SHA256

ff4bd361aadb3fac9467cd0ac2d7f85b005bb24101564cb3ea9afda1eea48ace
SHA512

1b531ed9c4b1ee456df32e0d9145b85fa5b3089ba4dfe91217c63017ea947bf1b2e5ffabe4332647fd0b05dadaaee64f5e454bd455df680e8e33cf5ebbb7d2a8
SSDEEP

49152:ISljl9FmSube1rvkapdXnHF0C+XXZA7PbyiTqr+Dtd4:ISllmdsrF0BOjbVqr+DtO

Score

7^/10

Malware Config

Targets

- Target
  
  ff4bd361aadb3fac9467cd0ac2d7f85b005bb24101564cb3ea9afda1eea48ace
- Size
  
  2.1MB
- MD5
  
  9de39af4e97e49cd69cbb788211f0122
- SHA1
  
  6cdb0114aaf325aea15704d50ccc2d089f0040d2
- SHA256
  
  ff4bd361aadb3fac9467cd0ac2d7f85b005bb24101564cb3ea9afda1eea48ace
- SHA512
  
  1b531ed9c4b1ee456df32e0d9145b85fa5b3089ba4dfe91217c63017ea947bf1b2e5ffabe4332647fd0b05dadaaee64f5e454bd455df680e8e33cf5ebbb7d2a8
- SSDEEP
  
  49152:ISljl9FmSube1rvkapdXnHF0C+XXZA7PbyiTqr+Dtd4:ISllmdsrF0BOjbVqr+DtO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1