7d06811e314b5b017f84ce9648f57ea26e8a72a92db0196e69ffca1721aeedf1 | Triage

Sharing

General

Target

12b0e2a45b7fec50f4dc0bf3850d0f41
Size

15KB
Sample

231219-nfbbescgc8
MD5

12b0e2a45b7fec50f4dc0bf3850d0f41
SHA1

eab0b7fe50151885e16ef8f0b992758ace52670e
SHA256

7d06811e314b5b017f84ce9648f57ea26e8a72a92db0196e69ffca1721aeedf1
SHA512

a9d61a2ca69ed55c1393fa77e8840aa26435aaeb10207fd0d9019b777e8bab64f01cb17379b5d091ceb8d3f56930ddd6b3a243154d63e054842a5caf7571fdd0
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEvjh:hDXWipuE+K3/SSHgx4d

Score

7^/10

Malware Config

Targets

- Target
  
  12b0e2a45b7fec50f4dc0bf3850d0f41
- Size
  
  15KB
- MD5
  
  12b0e2a45b7fec50f4dc0bf3850d0f41
- SHA1
  
  eab0b7fe50151885e16ef8f0b992758ace52670e
- SHA256
  
  7d06811e314b5b017f84ce9648f57ea26e8a72a92db0196e69ffca1721aeedf1
- SHA512
  
  a9d61a2ca69ed55c1393fa77e8840aa26435aaeb10207fd0d9019b777e8bab64f01cb17379b5d091ceb8d3f56930ddd6b3a243154d63e054842a5caf7571fdd0
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEvjh:hDXWipuE+K3/SSHgx4d
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2