2c05cce2487bd746975ea2ae2aefac23ca7aab910ee13697bce4837e2e1b7b67 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c05cce2487bd746975ea2ae2aefac23ca7aab910ee13697bce4837e2e1b7b67
Size

1.1MB
Sample

231011-25te7ada99
MD5

d50c2e065b4b5e0562c6cbf4b593c7e7
SHA1

11eee5f26f916454b4109f25f1b8773fbd1d9a1c
SHA256

2c05cce2487bd746975ea2ae2aefac23ca7aab910ee13697bce4837e2e1b7b67
SHA512

6e256ea4719779749d022c73516a065faf00f6e448f28edd8512443978843b45dd7de3651f5b9026df14dadfa0a900a9960c2a0143fb9d9cc56baaa1beff923d
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QH:CcaClSFlG4ZM7QzMg

Score

7^/10

Malware Config

Targets

- Target
  
  2c05cce2487bd746975ea2ae2aefac23ca7aab910ee13697bce4837e2e1b7b67
- Size
  
  1.1MB
- MD5
  
  d50c2e065b4b5e0562c6cbf4b593c7e7
- SHA1
  
  11eee5f26f916454b4109f25f1b8773fbd1d9a1c
- SHA256
  
  2c05cce2487bd746975ea2ae2aefac23ca7aab910ee13697bce4837e2e1b7b67
- SHA512
  
  6e256ea4719779749d022c73516a065faf00f6e448f28edd8512443978843b45dd7de3651f5b9026df14dadfa0a900a9960c2a0143fb9d9cc56baaa1beff923d
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QH:CcaClSFlG4ZM7QzMg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2