cc209c28e4d78068b131d1c4c278be88cbdf7d5cf1c5363ebfea28e523112111 | Triage

Sharing

General

Target

SecuriteInfo.com.Win32.DropperX-gen.22837.6834
Size

10KB
Sample

240306-w5d3lsga5s
MD5

ee27646b11ea5a3a6423ff98775831e3
SHA1

ae272f6dc8e2ddd2350db152c65e1cd747cad780
SHA256

cc209c28e4d78068b131d1c4c278be88cbdf7d5cf1c5363ebfea28e523112111
SHA512

d16757130f75c3e1e9d31490b93e5b33f8b05c72891cee56b4e61fe83bb3d19daca91fcaebecaebc9c3dc3a4eb0ba2652000b68395232cd11362a54785700bd5
SSDEEP

192:c2+tUAUg0/4pIKjOt2wUehEr964QmbRu47iH:c2oM4pIKjO79hS64Qci

Score

7^/10

Malware Config

Targets

- Target
  
  SecuriteInfo.com.Win32.DropperX-gen.22837.6834
- Size
  
  10KB
- MD5
  
  ee27646b11ea5a3a6423ff98775831e3
- SHA1
  
  ae272f6dc8e2ddd2350db152c65e1cd747cad780
- SHA256
  
  cc209c28e4d78068b131d1c4c278be88cbdf7d5cf1c5363ebfea28e523112111
- SHA512
  
  d16757130f75c3e1e9d31490b93e5b33f8b05c72891cee56b4e61fe83bb3d19daca91fcaebecaebc9c3dc3a4eb0ba2652000b68395232cd11362a54785700bd5
- SSDEEP
  
  192:c2+tUAUg0/4pIKjOt2wUehEr964QmbRu47iH:c2oM4pIKjO79hS64Qci
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2