d2f0a1b12c45fdaa7efdd64061f0f5692ed49688947c8dfbbb84d97cf7d1db75 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfbe6360fa4c4db4a2dfe031df7852fb.bin
Size

44KB
Sample

240212-ehr8aahb44
MD5

cfbe6360fa4c4db4a2dfe031df7852fb
SHA1

0baa120409f39d0be0ab167641dc5c32bd4d7fc5
SHA256

d2f0a1b12c45fdaa7efdd64061f0f5692ed49688947c8dfbbb84d97cf7d1db75
SHA512

e81f7d79f596a154418ec668c587179c3d7351aeab058d4d3a79d17b0516f9f62e698eecf0bb216b0dbdc6b8b5bde43ee7be69f9fd915f905e4b9fb65c9ebce4
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxZ:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XY

Score

7^/10

Malware Config

Targets

- Target
  
  cfbe6360fa4c4db4a2dfe031df7852fb.bin
- Size
  
  44KB
- MD5
  
  cfbe6360fa4c4db4a2dfe031df7852fb
- SHA1
  
  0baa120409f39d0be0ab167641dc5c32bd4d7fc5
- SHA256
  
  d2f0a1b12c45fdaa7efdd64061f0f5692ed49688947c8dfbbb84d97cf7d1db75
- SHA512
  
  e81f7d79f596a154418ec668c587179c3d7351aeab058d4d3a79d17b0516f9f62e698eecf0bb216b0dbdc6b8b5bde43ee7be69f9fd915f905e4b9fb65c9ebce4
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3KxZ:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2