6f6f647a9bafb8dfd42593d4d77abdd05947bc6a49716b79fbbc1a51f293079d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bfddcea5454a7997305696541e6d6347
Size

286KB
Sample

240311-fabe8sce5x
MD5

bfddcea5454a7997305696541e6d6347
SHA1

2885d22411b1a0f5565e0542bb38c0a3cf7a0e4d
SHA256

6f6f647a9bafb8dfd42593d4d77abdd05947bc6a49716b79fbbc1a51f293079d
SHA512

2a404382475c49f150a30eb283811002da5ba848988d8c139a653f72b2bdb41878b32c885c6a5dcef6e0c9e36ed98d6edd7f5c6b6efbcd4fc7f79a2bf1b6a205
SSDEEP

6144:23MrONR1cNwPLvoqg0R2VhPefm0ToyugupkXHykED/m0eNGGs:o171c2obY7WDK3yh/n

Score

7^/10

Malware Config

Targets

- Target
  
  bfddcea5454a7997305696541e6d6347
- Size
  
  286KB
- MD5
  
  bfddcea5454a7997305696541e6d6347
- SHA1
  
  2885d22411b1a0f5565e0542bb38c0a3cf7a0e4d
- SHA256
  
  6f6f647a9bafb8dfd42593d4d77abdd05947bc6a49716b79fbbc1a51f293079d
- SHA512
  
  2a404382475c49f150a30eb283811002da5ba848988d8c139a653f72b2bdb41878b32c885c6a5dcef6e0c9e36ed98d6edd7f5c6b6efbcd4fc7f79a2bf1b6a205
- SSDEEP
  
  6144:23MrONR1cNwPLvoqg0R2VhPefm0ToyugupkXHykED/m0eNGGs:o171c2obY7WDK3yh/n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2