dd470558330560f881346ad5a5c6b5ca53b5e986d42be3a6d70470785e9b2e7f | Triage

Sharing

General

Target

7b95817a257d368368a6b16b0045a342.bin
Size

104KB
Sample

231113-cplyqsfe61
MD5

7b95817a257d368368a6b16b0045a342
SHA1

a114d4ea106823abfce21a24d36166bbaa237249
SHA256

dd470558330560f881346ad5a5c6b5ca53b5e986d42be3a6d70470785e9b2e7f
SHA512

40d05d8c16615f8a938d29fb03dcd9b4efba16bdcbee38101d8bf8b13c6246d1773181cdd73b9782d79cb946e9cc8b08bc0dd98085ce5e0e0f052ffb97ee06e9
SSDEEP

3072:AToIGXLHpUTEwFVkLcK4q7KJPhh9vZs7DhMnZN:ATNGXLCTEwwgFPhhQfh

Score

7^/10

Malware Config

Targets

- Target
  
  7b95817a257d368368a6b16b0045a342.bin
- Size
  
  104KB
- MD5
  
  7b95817a257d368368a6b16b0045a342
- SHA1
  
  a114d4ea106823abfce21a24d36166bbaa237249
- SHA256
  
  dd470558330560f881346ad5a5c6b5ca53b5e986d42be3a6d70470785e9b2e7f
- SHA512
  
  40d05d8c16615f8a938d29fb03dcd9b4efba16bdcbee38101d8bf8b13c6246d1773181cdd73b9782d79cb946e9cc8b08bc0dd98085ce5e0e0f052ffb97ee06e9
- SSDEEP
  
  3072:AToIGXLHpUTEwFVkLcK4q7KJPhh9vZs7DhMnZN:ATNGXLCTEwwgFPhhQfh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2