c660bc012e2037cf47b73d87a862e5ec640e0eda22b2d998145a623f8c0d68e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c660bc012e2037cf47b73d87a862e5ec640e0eda22b2d998145a623f8c0d68e7
Size

2.1MB
Sample

231009-pn6yqseh46
MD5

3bc2a6a1328997c07c4f848cd60a0ead
SHA1

df0ae173787ed50435cef8109eb45530c7b15e90
SHA256

c660bc012e2037cf47b73d87a862e5ec640e0eda22b2d998145a623f8c0d68e7
SHA512

f2c67f252d107d731fcbb6d8d259397dfd00813b177bd59c6d4b06c48707bb18b7cf226929678e7144cd87fbb37e9d14c174202cd4847fbbe1179070cfd620c1
SSDEEP

24576:cOPImH4BazIsMA73zpJZooChVi2+2tw0AlhszrDpFq7DDJvqGeR3dKPY+K:xI+6pFq7DDJvidKPU

Score

7^/10

Malware Config

Targets

- Target
  
  c660bc012e2037cf47b73d87a862e5ec640e0eda22b2d998145a623f8c0d68e7
- Size
  
  2.1MB
- MD5
  
  3bc2a6a1328997c07c4f848cd60a0ead
- SHA1
  
  df0ae173787ed50435cef8109eb45530c7b15e90
- SHA256
  
  c660bc012e2037cf47b73d87a862e5ec640e0eda22b2d998145a623f8c0d68e7
- SHA512
  
  f2c67f252d107d731fcbb6d8d259397dfd00813b177bd59c6d4b06c48707bb18b7cf226929678e7144cd87fbb37e9d14c174202cd4847fbbe1179070cfd620c1
- SSDEEP
  
  24576:cOPImH4BazIsMA73zpJZooChVi2+2tw0AlhszrDpFq7DDJvqGeR3dKPY+K:xI+6pFq7DDJvidKPU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2