2fd8835f0e5b6697d79c4fa22a2f9e214e14072a0a22eec3ca426d9d2a539ea6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2fd8835f0e5b6697d79c4fa22a2f9e214e14072a0a22eec3ca426d9d2a539ea6
Size

1.8MB
Sample

231012-b4jaqaaf46
MD5

aa9a67d220f437542484dd6bd533e67f
SHA1

6793f13279f5d3c40099153861291d477d2bc2c1
SHA256

2fd8835f0e5b6697d79c4fa22a2f9e214e14072a0a22eec3ca426d9d2a539ea6
SHA512

4d6a1841c2fae3d06169eadf9554ed18c1348a843d70c55bf337232c231c7562f0a2a262dd0bdcfe004988978a8c2ab1851e0a24a7ee078bd729dcffdd21bfe8
SSDEEP

49152:CvxfXTf59466UGFR4YrRkXYCI2Vxq3Am10HP1e37eT13buo:CvxL59V6UU4YFkoCfVxqBkPMyT13n

Score

7^/10

Malware Config

Targets

- Target
  
  2fd8835f0e5b6697d79c4fa22a2f9e214e14072a0a22eec3ca426d9d2a539ea6
- Size
  
  1.8MB
- MD5
  
  aa9a67d220f437542484dd6bd533e67f
- SHA1
  
  6793f13279f5d3c40099153861291d477d2bc2c1
- SHA256
  
  2fd8835f0e5b6697d79c4fa22a2f9e214e14072a0a22eec3ca426d9d2a539ea6
- SHA512
  
  4d6a1841c2fae3d06169eadf9554ed18c1348a843d70c55bf337232c231c7562f0a2a262dd0bdcfe004988978a8c2ab1851e0a24a7ee078bd729dcffdd21bfe8
- SSDEEP
  
  49152:CvxfXTf59466UGFR4YrRkXYCI2Vxq3Am10HP1e37eT13buo:CvxL59V6UU4YFkoCfVxqBkPMyT13n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2