fc5aee57a0b54c1c0ecc4774481797d4f40b7dbf87d8f30496b26269dcdc2c31 | Triage

Sharing

General

Target

fc5aee57a0b54c1c0ecc4774481797d4f40b7dbf87d8f30496b26269dcdc2c31
Size

564KB
Sample

240527-ffaqwsgf7x
MD5

64bad1696418d16f7ee65d3ad377a06e
SHA1

920504aa7db5278eee8b2bae9d393f9d25539c57
SHA256

fc5aee57a0b54c1c0ecc4774481797d4f40b7dbf87d8f30496b26269dcdc2c31
SHA512

2892caa372856eae1e4724362c1b37af59d485abd910efb74580ec0f56c6a4d44a735f96dc0526137aeec1b9858a4a7fe0524a90c469c211adb2b41ea349df7d
SSDEEP

3072:dCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxV:dqDAwl0xPTMiR9JSSxPUKYGdodHo

Score

7^/10

Malware Config

Targets

- Target
  
  fc5aee57a0b54c1c0ecc4774481797d4f40b7dbf87d8f30496b26269dcdc2c31
- Size
  
  564KB
- MD5
  
  64bad1696418d16f7ee65d3ad377a06e
- SHA1
  
  920504aa7db5278eee8b2bae9d393f9d25539c57
- SHA256
  
  fc5aee57a0b54c1c0ecc4774481797d4f40b7dbf87d8f30496b26269dcdc2c31
- SHA512
  
  2892caa372856eae1e4724362c1b37af59d485abd910efb74580ec0f56c6a4d44a735f96dc0526137aeec1b9858a4a7fe0524a90c469c211adb2b41ea349df7d
- SSDEEP
  
  3072:dCaoAs101Pol0xPTM7mRCAdJSSxPUkl3VyFNdQMQTCk/dN92sdNhavtrVdewnAxV:dqDAwl0xPTMiR9JSSxPUKYGdodHo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2