3fcf13982c7b543af58f22f18d77b370f2871eec5f8be3838588189ec528afad | Triage

Sharing

General

Target

3fcf13982c7b543af58f22f18d77b370f2871eec5f8be3838588189ec528afad.exe
Size

6KB
Sample

240502-bnzmrscg7y
MD5

a79bbca37e4d87e9bd35a6d4f4730250
SHA1

38e7ddeb8f9e7fe8f56a9a43b012d6d5318f7e48
SHA256

3fcf13982c7b543af58f22f18d77b370f2871eec5f8be3838588189ec528afad
SHA512

fac3c4afeed70e78e3162576716c1055616353e109fcbdc06200239dc4c7d28762ef0ee40dac1d2faa1394903f36209c6f49e12a73533d7b733433401d01ab64
SSDEEP

96:20acCYDSB79X4b60qvjnMDOeI3VIJ5NwC7eAYz0evk+P/Zz44f3szd3ojZrl:2PYDk90qvjsI3mNwCnYPvk+ZPf8zde

Score

8^/10

Malware Config

Targets

- Target
  
  3fcf13982c7b543af58f22f18d77b370f2871eec5f8be3838588189ec528afad.exe
- Size
  
  6KB
- MD5
  
  a79bbca37e4d87e9bd35a6d4f4730250
- SHA1
  
  38e7ddeb8f9e7fe8f56a9a43b012d6d5318f7e48
- SHA256
  
  3fcf13982c7b543af58f22f18d77b370f2871eec5f8be3838588189ec528afad
- SHA512
  
  fac3c4afeed70e78e3162576716c1055616353e109fcbdc06200239dc4c7d28762ef0ee40dac1d2faa1394903f36209c6f49e12a73533d7b733433401d01ab64
- SSDEEP
  
  96:20acCYDSB79X4b60qvjnMDOeI3VIJ5NwC7eAYz0evk+P/Zz44f3szd3ojZrl:2PYDk90qvjsI3mNwCnYPvk+ZPf8zde
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2