ccb9aec6142b5e9589974e5a19262f91c88e0caa9a4bbad1bb08a50df0187e71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccb9aec6142b5e9589974e5a19262f91c88e0caa9a4bbad1bb08a50df0187e71
Size

10.2MB
Sample

240628-zbct8s1emg
MD5

d37cff664e5e88b733a2cd3714f7f747
SHA1

c0a93d12662742b44d3c5cbe3358987169bf86d0
SHA256

ccb9aec6142b5e9589974e5a19262f91c88e0caa9a4bbad1bb08a50df0187e71
SHA512

ab8880ad2da913b4d4da94f18178bf3bf536e953431a25c59beaa18a85e51058b0d24c164ce112a687d7d80b6400e7bfe8824779317641704e8aff9037492a94
SSDEEP

196608:jCVD8CYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOViyy:WVD8CD4F3e+biSDcQwM8uDuB

Score

7^/10

Malware Config

Targets

- Target
  
  ccb9aec6142b5e9589974e5a19262f91c88e0caa9a4bbad1bb08a50df0187e71
- Size
  
  10.2MB
- MD5
  
  d37cff664e5e88b733a2cd3714f7f747
- SHA1
  
  c0a93d12662742b44d3c5cbe3358987169bf86d0
- SHA256
  
  ccb9aec6142b5e9589974e5a19262f91c88e0caa9a4bbad1bb08a50df0187e71
- SHA512
  
  ab8880ad2da913b4d4da94f18178bf3bf536e953431a25c59beaa18a85e51058b0d24c164ce112a687d7d80b6400e7bfe8824779317641704e8aff9037492a94
- SSDEEP
  
  196608:jCVD8CYqsBmiFm4CTqfG+vTiwnDmNQkJM8uDIYnKOViyy:WVD8CD4F3e+biSDcQwM8uDuB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2