f2c72df94c200c1484b63667a7ebc4e419bd0d3032df49ed220d86d5b10734e0 | Triage

Sharing

General

Target

f2c72df94c200c1484b63667a7ebc4e419bd0d3032df49ed220d86d5b10734e0
Size

45KB
Sample

240604-fnv2ssdh9w
MD5

8074776debf91ad5b50761f27eeb6942
SHA1

a8096458b6833082d0d128079237f45d6514e594
SHA256

f2c72df94c200c1484b63667a7ebc4e419bd0d3032df49ed220d86d5b10734e0
SHA512

bf60d640a38712c790d0aea8ecef9bcb3562b8bb69a703bc2b3532b40dd4a420108322c0b0e02bc724c87c16a4cb3a98d9d73e622d19867f9b20bca7e7514a5a
SSDEEP

768:aHcisZ7uyQZBDM8SPxw0fQ0qjKKRyg7ZG/ggo:aHctJupci0fT7sZGIgo

Score

7^/10

Malware Config

Targets

- Target
  
  f2c72df94c200c1484b63667a7ebc4e419bd0d3032df49ed220d86d5b10734e0
- Size
  
  45KB
- MD5
  
  8074776debf91ad5b50761f27eeb6942
- SHA1
  
  a8096458b6833082d0d128079237f45d6514e594
- SHA256
  
  f2c72df94c200c1484b63667a7ebc4e419bd0d3032df49ed220d86d5b10734e0
- SHA512
  
  bf60d640a38712c790d0aea8ecef9bcb3562b8bb69a703bc2b3532b40dd4a420108322c0b0e02bc724c87c16a4cb3a98d9d73e622d19867f9b20bca7e7514a5a
- SSDEEP
  
  768:aHcisZ7uyQZBDM8SPxw0fQ0qjKKRyg7ZG/ggo:aHctJupci0fT7sZGIgo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2