ccd9df9116bdd53f356380c0b3fa60128e3ec081964dc4e4001fd595c8604235 | Triage

Sharing

General

Target

ccd9df9116bdd53f356380c0b3fa60128e3ec081964dc4e4001fd595c8604235
Size

53KB
Sample

240606-g5785abc72
MD5

1dbed9fa8a7c09b1c79dc46be9e9ddc4
SHA1

ececc666df4ec6dc20d5d1b937de153f2ad76e97
SHA256

ccd9df9116bdd53f356380c0b3fa60128e3ec081964dc4e4001fd595c8604235
SHA512

818abb116338abfd53d1a30c5fec59a744759eb5bb8fa5f49acfa949ef5d3a098071a5b92239c9182b31cdade3c37473db7ec3a3b0e2cf44b24c886d1b5bc08a
SSDEEP

768:zvKPgUJap1c5K8fKs3l43dvY55xnED4VbSW1jDhttN3HagdWpUYPg:z9UWa5KLs3lqdvY55BED4VeW1nRspUYo

Score

7^/10

Malware Config

Targets

- Target
  
  ccd9df9116bdd53f356380c0b3fa60128e3ec081964dc4e4001fd595c8604235
- Size
  
  53KB
- MD5
  
  1dbed9fa8a7c09b1c79dc46be9e9ddc4
- SHA1
  
  ececc666df4ec6dc20d5d1b937de153f2ad76e97
- SHA256
  
  ccd9df9116bdd53f356380c0b3fa60128e3ec081964dc4e4001fd595c8604235
- SHA512
  
  818abb116338abfd53d1a30c5fec59a744759eb5bb8fa5f49acfa949ef5d3a098071a5b92239c9182b31cdade3c37473db7ec3a3b0e2cf44b24c886d1b5bc08a
- SSDEEP
  
  768:zvKPgUJap1c5K8fKs3l43dvY55xnED4VbSW1jDhttN3HagdWpUYPg:z9UWa5KLs3lqdvY55BED4VeW1nRspUYo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2