2c67bcec8acbff1cafe60624c8a0b20be4a3300f25e90ba25a6e8c1e6cb6020f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c67bcec8acbff1cafe60624c8a0b20be4a3300f25e90ba25a6e8c1e6cb6020f.exe
Size

48KB
Sample

240524-mxwg9aed64
MD5

635b740b8aeedd28d465aa0b2cf2caa5
SHA1

34d8b88b694714ebb5ea062bb752688ccbf2c98a
SHA256

2c67bcec8acbff1cafe60624c8a0b20be4a3300f25e90ba25a6e8c1e6cb6020f
SHA512

7f7d0e47d4dc480866bbf276c3b8684de0e1e5c971434aea8172329c6b1d2ea71e4e2eed8827e48002916ab11ea95127a845a33b0860551a9cb16a48b617fe26
SSDEEP

384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmRST:XS5nQJ24LR1bytOOtEvwDpjNbP/bm2tj

Score

7^/10

Malware Config

Targets

- Target
  
  2c67bcec8acbff1cafe60624c8a0b20be4a3300f25e90ba25a6e8c1e6cb6020f.exe
- Size
  
  48KB
- MD5
  
  635b740b8aeedd28d465aa0b2cf2caa5
- SHA1
  
  34d8b88b694714ebb5ea062bb752688ccbf2c98a
- SHA256
  
  2c67bcec8acbff1cafe60624c8a0b20be4a3300f25e90ba25a6e8c1e6cb6020f
- SHA512
  
  7f7d0e47d4dc480866bbf276c3b8684de0e1e5c971434aea8172329c6b1d2ea71e4e2eed8827e48002916ab11ea95127a845a33b0860551a9cb16a48b617fe26
- SSDEEP
  
  384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmRST:XS5nQJ24LR1bytOOtEvwDpjNbP/bm2tj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2