3cbe7d544ef4c8ff8e5c1e101dbdf5316d0cfbe32658d8b9209f922309162bcf | Triage

Resubmissions

04-09-2024 14:41

240904-r2xnbstdjb 7

10-04-2024 10:27

240410-mhk3zacd83 7

Sharing

General

Target

3cbe7d544ef4c8ff8e5c1e101dbdf5316d0cfbe32658d8b9209f922309162bcf
Size

6KB
Sample

240904-r2xnbstdjb
MD5

e3eb6e9bc8321adb844e30606ed275a4
SHA1

a8730f75bc6bf86e39b26cbf7ec9ab71883012f9
SHA256

3cbe7d544ef4c8ff8e5c1e101dbdf5316d0cfbe32658d8b9209f922309162bcf
SHA512

0025ccbd19bdc213c438aaa41b0160e6f83d345394ab06c090ef37d512d63fca8732aaba51fd0e5c00aeed2865806426b788ef50ce88ffb429381abe29bd9fa3
SSDEEP

96:elifguAgKNtexhBCCutCviwSHlmhhFOR3az0sAMWlP:88E4q2M3aWlP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3cbe7d544ef4c8ff8e5c1e101dbdf5316d0cfbe32658d8b9209f922309162bcf
- Size
  
  6KB
- MD5
  
  e3eb6e9bc8321adb844e30606ed275a4
- SHA1
  
  a8730f75bc6bf86e39b26cbf7ec9ab71883012f9
- SHA256
  
  3cbe7d544ef4c8ff8e5c1e101dbdf5316d0cfbe32658d8b9209f922309162bcf
- SHA512
  
  0025ccbd19bdc213c438aaa41b0160e6f83d345394ab06c090ef37d512d63fca8732aaba51fd0e5c00aeed2865806426b788ef50ce88ffb429381abe29bd9fa3
- SSDEEP
  
  96:elifguAgKNtexhBCCutCviwSHlmhhFOR3az0sAMWlP:88E4q2M3aWlP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2