2f65011d5dcb1a4fa03f77d00b9eac16ca248ff456d294bce489de7866898e8e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2f65011d5dcb1a4fa03f77d00b9eac16ca248ff456d294bce489de7866898e8e
Size

5KB
Sample

240808-yqdjmsydrp
MD5

f666fc3223dfb190ba9825cbdbea12bc
SHA1

5c6848eb59e9ac2ce18ccef3dddba00f0d1dd56d
SHA256

2f65011d5dcb1a4fa03f77d00b9eac16ca248ff456d294bce489de7866898e8e
SHA512

b1e74a30e3bccf1a00d6945b429c4ebf4df4902d905a603e8827108e52b872898f5170c33244e515cc655bc7a972f1a3fd78830d9f3071eb8e581c820921d5ae
SSDEEP

48:qajxtxAmcRB/G9qTCJMPC3u1rsHB/VnC/RAxU92CS70ALNx1S8iaU7vKIq:FnKhL1mUiuuHnnwR2U92ClAhx13s7vKr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2f65011d5dcb1a4fa03f77d00b9eac16ca248ff456d294bce489de7866898e8e
- Size
  
  5KB
- MD5
  
  f666fc3223dfb190ba9825cbdbea12bc
- SHA1
  
  5c6848eb59e9ac2ce18ccef3dddba00f0d1dd56d
- SHA256
  
  2f65011d5dcb1a4fa03f77d00b9eac16ca248ff456d294bce489de7866898e8e
- SHA512
  
  b1e74a30e3bccf1a00d6945b429c4ebf4df4902d905a603e8827108e52b872898f5170c33244e515cc655bc7a972f1a3fd78830d9f3071eb8e581c820921d5ae
- SSDEEP
  
  48:qajxtxAmcRB/G9qTCJMPC3u1rsHB/VnC/RAxU92CS70ALNx1S8iaU7vKIq:FnKhL1mUiuuHnnwR2U92ClAhx13s7vKr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2