bd5bbc16a78d8ba91a2fdd0055eed5a99371d4a25c93da8faeb72d6f61b6213f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f526e89d7c722155eedc7652e7c941d2.bin
Size

32KB
Sample

240213-frgctadb3v
MD5

f526e89d7c722155eedc7652e7c941d2
SHA1

afbd2f7a02256062f5784dfea8476568c8bbeff0
SHA256

bd5bbc16a78d8ba91a2fdd0055eed5a99371d4a25c93da8faeb72d6f61b6213f
SHA512

7912d06a72beddde92e2a266dbbd0ac651be7e4f51d303ac98ff969e3df907e98ecc11759aea6be17b318e0f8310e458986aa303a9de997c3599f82598094b77
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuM93iF:bAvJCYOOvbRPDEgXRcuM98

Score

7^/10

Malware Config

Targets

- Target
  
  f526e89d7c722155eedc7652e7c941d2.bin
- Size
  
  32KB
- MD5
  
  f526e89d7c722155eedc7652e7c941d2
- SHA1
  
  afbd2f7a02256062f5784dfea8476568c8bbeff0
- SHA256
  
  bd5bbc16a78d8ba91a2fdd0055eed5a99371d4a25c93da8faeb72d6f61b6213f
- SHA512
  
  7912d06a72beddde92e2a266dbbd0ac651be7e4f51d303ac98ff969e3df907e98ecc11759aea6be17b318e0f8310e458986aa303a9de997c3599f82598094b77
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuM93iF:bAvJCYOOvbRPDEgXRcuM98
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2