c662ba3ffd93bfe34b0a09d6d71ce26e6a1de5f200b0041b12c8af564efe6b82 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4d4ee630e395894f9152690e4bc5a5e.bin
Size

74KB
Sample

240212-d152esda9t
MD5

b4d4ee630e395894f9152690e4bc5a5e
SHA1

7bef5972fca29c0e46bc8e5c2817d505d991baf1
SHA256

c662ba3ffd93bfe34b0a09d6d71ce26e6a1de5f200b0041b12c8af564efe6b82
SHA512

cf54984320a463770240a3b57320ea96a014210e49837b183c5fd976b9ae34a2911602dd808165cba2df3b4e008a38a03919b4f5311b321e34f3276a272fcc26
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3Ku3V:ZVxkGOtEvwDpjcah

Score

7^/10

Malware Config

Targets

- Target
  
  b4d4ee630e395894f9152690e4bc5a5e.bin
- Size
  
  74KB
- MD5
  
  b4d4ee630e395894f9152690e4bc5a5e
- SHA1
  
  7bef5972fca29c0e46bc8e5c2817d505d991baf1
- SHA256
  
  c662ba3ffd93bfe34b0a09d6d71ce26e6a1de5f200b0041b12c8af564efe6b82
- SHA512
  
  cf54984320a463770240a3b57320ea96a014210e49837b183c5fd976b9ae34a2911602dd808165cba2df3b4e008a38a03919b4f5311b321e34f3276a272fcc26
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3Ku3V:ZVxkGOtEvwDpjcah
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2