cdc71c3e668117ae561fcaa4ee4c9054e1982fa79920f70469989266222bef53 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09cd1b0266712e4eec4d752b0d7d3bdf.zip
Size

12KB
Sample

240901-2bn9dathpc
MD5

a7d2e0bd4590f095b228be7af86de563
SHA1

95defd784d104b8e84d63ac821114bd40a4e6a5d
SHA256

cdc71c3e668117ae561fcaa4ee4c9054e1982fa79920f70469989266222bef53
SHA512

d39978a9a380e169248888afe0a78616ff7c59174cd0a6edff739aededf16a550c2b6c8b0bd191c4ac644d8aa2e10a8ab46e0acebee707724931c813e468980c
SSDEEP

384:u2ODwGsNTIDJpv8pAbptYrjxgdzJsr3BPQJIN7:u2vGsdA6GptYWJsrCk7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cbaade0a0eb831d1aadf495db8861a82bef84b615fed6b196556bbe2a3401aeb
- Size
  
  20KB
- MD5
  
  09cd1b0266712e4eec4d752b0d7d3bdf
- SHA1
  
  da151189d5c169c806043b806819ae52cf67398f
- SHA256
  
  cbaade0a0eb831d1aadf495db8861a82bef84b615fed6b196556bbe2a3401aeb
- SHA512
  
  a6fd3689f4cbb0448966d28b33e895bd4236f9a825b6c90927b4b0d9e550328c0dcc17d6f64b1df8641c2dbab55220e01fc4fade3f4bfef711787c3de8a9e70d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4SF:hDXWipuE+K3/SSHgxmHZC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2