0dcd2effde217c97374cd7cc2e0142106ad5bf80b985539f09c0b2482ffe99cb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cdd11ae852818291ff548963ee09b9c0N.exe
Size

87KB
Sample

240721-qvphpssdrh
MD5

cdd11ae852818291ff548963ee09b9c0
SHA1

b3078ea8df2963cde0c05d24038773b610f9ee16
SHA256

0dcd2effde217c97374cd7cc2e0142106ad5bf80b985539f09c0b2482ffe99cb
SHA512

19e0ed91851353080d999cf2789e52493b174d01559bdbbe47483375d56de56fc43a637aa0a787cf8fff8e611448ceca0f70019bcdd5ec82b62944a5e252c194
SSDEEP

1536:CZFJTafg3hnfq4yyFBrRyyeBaiRTxRwvru8Jb4Jp3:yFGgRfqI2T

Score

7^/10

Malware Config

Targets

- Target
  
  cdd11ae852818291ff548963ee09b9c0N.exe
- Size
  
  87KB
- MD5
  
  cdd11ae852818291ff548963ee09b9c0
- SHA1
  
  b3078ea8df2963cde0c05d24038773b610f9ee16
- SHA256
  
  0dcd2effde217c97374cd7cc2e0142106ad5bf80b985539f09c0b2482ffe99cb
- SHA512
  
  19e0ed91851353080d999cf2789e52493b174d01559bdbbe47483375d56de56fc43a637aa0a787cf8fff8e611448ceca0f70019bcdd5ec82b62944a5e252c194
- SSDEEP
  
  1536:CZFJTafg3hnfq4yyFBrRyyeBaiRTxRwvru8Jb4Jp3:yFGgRfqI2T
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2