863b68913ac806bdef51e42f5e9f1328e7e89d44f6d9ee0932fa31899e32be61 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf982c03d7bd53fc8d226c663130804c
Size

34KB
Sample

240311-cvp8caab36
MD5

bf982c03d7bd53fc8d226c663130804c
SHA1

8c61be7ea615be3d706964d468f562a06b5ade44
SHA256

863b68913ac806bdef51e42f5e9f1328e7e89d44f6d9ee0932fa31899e32be61
SHA512

f9d7d70a67bc4d1caa2f427cfa3fed74ce4bdebc1d24c3775940bb55eccac783274b079d89d65365143092caf5f2ead3b737d59f15a0a76d416fc1e1da412978
SSDEEP

768:l1MO6kHpnF/v3OOKN4ntqgGqQcHUoGcsVpgcrZ9X3:DN1b3M4nQcZGlg29X

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bf982c03d7bd53fc8d226c663130804c
- Size
  
  34KB
- MD5
  
  bf982c03d7bd53fc8d226c663130804c
- SHA1
  
  8c61be7ea615be3d706964d468f562a06b5ade44
- SHA256
  
  863b68913ac806bdef51e42f5e9f1328e7e89d44f6d9ee0932fa31899e32be61
- SHA512
  
  f9d7d70a67bc4d1caa2f427cfa3fed74ce4bdebc1d24c3775940bb55eccac783274b079d89d65365143092caf5f2ead3b737d59f15a0a76d416fc1e1da412978
- SSDEEP
  
  768:l1MO6kHpnF/v3OOKN4ntqgGqQcHUoGcsVpgcrZ9X3:DN1b3M4nQcZGlg29X
Score

8^/10

persistence
- Sets file execution options in registry
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2