bf5cdb640213e550628e1eca83434ea6baa16a824f5f942c0e14e2afa5910735 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf5cdb640213e550628e1eca83434ea6baa16a824f5f942c0e14e2afa5910735
Size

23KB
Sample

240409-cbyelsah38
MD5

e293cd4b154ded28a605b988184d3c77
SHA1

28976a749f66c27382a1a98943e5b91594ce2469
SHA256

bf5cdb640213e550628e1eca83434ea6baa16a824f5f942c0e14e2afa5910735
SHA512

ff1d3da76d1a53d91e0b1f3704a77f1401fb9fa46736e320c7efec91e2c23af69c8a5c02ead827ebd16325bc6b481108d08884dc7e8b503fa6baf814f4358df4
SSDEEP

384:uzP7cQB1sgKWt0R+DB295BdenlICdU1UD8Nug:uzP4BgDt3DXlICcUD8ug

Score

7^/10

Malware Config

Targets

- Target
  
  bf5cdb640213e550628e1eca83434ea6baa16a824f5f942c0e14e2afa5910735
- Size
  
  23KB
- MD5
  
  e293cd4b154ded28a605b988184d3c77
- SHA1
  
  28976a749f66c27382a1a98943e5b91594ce2469
- SHA256
  
  bf5cdb640213e550628e1eca83434ea6baa16a824f5f942c0e14e2afa5910735
- SHA512
  
  ff1d3da76d1a53d91e0b1f3704a77f1401fb9fa46736e320c7efec91e2c23af69c8a5c02ead827ebd16325bc6b481108d08884dc7e8b503fa6baf814f4358df4
- SSDEEP
  
  384:uzP7cQB1sgKWt0R+DB295BdenlICdU1UD8Nug:uzP4BgDt3DXlICcUD8ug
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2