2bd006fe591dc8657a1c9fe618d0feffd0c417e019351719e60904501dbca3cf | Triage

Sharing

General

Target

2bd006fe591dc8657a1c9fe618d0feffd0c417e019351719e60904501dbca3cf
Size

1.1MB
Sample

240608-y9vbhafg7v
MD5

c8cf72a17c845608bfdbc128b918ee34
SHA1

2868f3e4ec8b4ff0261b74dbfb490351df41afce
SHA256

2bd006fe591dc8657a1c9fe618d0feffd0c417e019351719e60904501dbca3cf
SHA512

5983a8a0d47b72c90c645414d1edb3a9fd954b9910add052f1ebbfcb1118f3fc7287bb11b1eaca66bbe761339c6e38f93946fbb9f67154db1ffd92416be2efae
SSDEEP

24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QR:acallSllG4ZM7QzMi

Score

7^/10

Malware Config

Targets

- Target
  
  2bd006fe591dc8657a1c9fe618d0feffd0c417e019351719e60904501dbca3cf
- Size
  
  1.1MB
- MD5
  
  c8cf72a17c845608bfdbc128b918ee34
- SHA1
  
  2868f3e4ec8b4ff0261b74dbfb490351df41afce
- SHA256
  
  2bd006fe591dc8657a1c9fe618d0feffd0c417e019351719e60904501dbca3cf
- SHA512
  
  5983a8a0d47b72c90c645414d1edb3a9fd954b9910add052f1ebbfcb1118f3fc7287bb11b1eaca66bbe761339c6e38f93946fbb9f67154db1ffd92416be2efae
- SSDEEP
  
  24576:aH0dl8myX9Bg42QoXFkrzkmplSgRDYo0lG4Z8r7Qfbkiu5QR:acallSllG4ZM7QzMi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2