2cfcf8aafa9838be1ade7acc98daebbf21948b82503023deda2784b49f65fb50 | Triage

Sharing

General

Target

2cfcf8aafa9838be1ade7acc98daebbf21948b82503023deda2784b49f65fb50N
Size

80KB
Sample

240919-eb63vszamf
MD5

4c32d91e6a656f5f4db7d601a0232200
SHA1

e49abe3103afb63c6ead5433c8fe14fc9b7e962e
SHA256

2cfcf8aafa9838be1ade7acc98daebbf21948b82503023deda2784b49f65fb50
SHA512

a39623a11be023470709957237a3d48d68c3508d59577094a7b4f6baf72be2958da062fa6f76df01546f9a5f054a9b36ab7ae8e6e76da1841e67fd2ca0401c69
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBEk23:vCjsIOtEvwDpj5H9YvQd2+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2cfcf8aafa9838be1ade7acc98daebbf21948b82503023deda2784b49f65fb50N
- Size
  
  80KB
- MD5
  
  4c32d91e6a656f5f4db7d601a0232200
- SHA1
  
  e49abe3103afb63c6ead5433c8fe14fc9b7e962e
- SHA256
  
  2cfcf8aafa9838be1ade7acc98daebbf21948b82503023deda2784b49f65fb50
- SHA512
  
  a39623a11be023470709957237a3d48d68c3508d59577094a7b4f6baf72be2958da062fa6f76df01546f9a5f054a9b36ab7ae8e6e76da1841e67fd2ca0401c69
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBEk23:vCjsIOtEvwDpj5H9YvQd2+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2