cc3da143ed6c3c177dd77e4c0c3ff2cadf684ca33287c8f6b8320c49d1aa05d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d112301bf13cbade5014316c9b328720N.exe
Size

37KB
Sample

240814-vfxmzsxglm
MD5

d112301bf13cbade5014316c9b328720
SHA1

0e7e3f07ef429493e3b6e4204e3ab7a4186be3e2
SHA256

cc3da143ed6c3c177dd77e4c0c3ff2cadf684ca33287c8f6b8320c49d1aa05d0
SHA512

5b74ee78a944f6e2c6165b26374be3f104b4bee69b67dc3bae3575c570bd677c111e9a0dcf19bb6b0a4f7298491027753b42c771afc9a65788b7cbee0605dc49
SSDEEP

384:Uc6CNYprcSCJp6hP2zvx/P4d1Hr06eeaQQt+h64LePZpkLCK:Uc6iacSSXxXKF4WQcxL8ZKLCK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d112301bf13cbade5014316c9b328720N.exe
- Size
  
  37KB
- MD5
  
  d112301bf13cbade5014316c9b328720
- SHA1
  
  0e7e3f07ef429493e3b6e4204e3ab7a4186be3e2
- SHA256
  
  cc3da143ed6c3c177dd77e4c0c3ff2cadf684ca33287c8f6b8320c49d1aa05d0
- SHA512
  
  5b74ee78a944f6e2c6165b26374be3f104b4bee69b67dc3bae3575c570bd677c111e9a0dcf19bb6b0a4f7298491027753b42c771afc9a65788b7cbee0605dc49
- SSDEEP
  
  384:Uc6CNYprcSCJp6hP2zvx/P4d1Hr06eeaQQt+h64LePZpkLCK:Uc6iacSSXxXKF4WQcxL8ZKLCK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2