bf58c05f3cd932766ffc04f4ae5ce7fc26d09667ac0e2d77f19addd278f3efc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf58c05f3cd932766ffc04f4ae5ce7fc26d09667ac0e2d77f19addd278f3efc4N
Size

60KB
Sample

241003-dfyrls1dqq
MD5

2f530366cda1f67ed768602b22abcbc0
SHA1

8db72b4f33d8e7f8c37c4d84027dcbbbb7755af4
SHA256

bf58c05f3cd932766ffc04f4ae5ce7fc26d09667ac0e2d77f19addd278f3efc4
SHA512

ba3fd31eed9e79fd2fb495cfe86fa81224634d9087e218ecdfdc6a92873bd0858abcfe8a694bdefc6f2546f594a506f059e787fcd80328e8b3876e52b34f4d55
SSDEEP

384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxFpk2Zb/:aePG5H8XhKD8ISZQjkgs1lxFVb/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bf58c05f3cd932766ffc04f4ae5ce7fc26d09667ac0e2d77f19addd278f3efc4N
- Size
  
  60KB
- MD5
  
  2f530366cda1f67ed768602b22abcbc0
- SHA1
  
  8db72b4f33d8e7f8c37c4d84027dcbbbb7755af4
- SHA256
  
  bf58c05f3cd932766ffc04f4ae5ce7fc26d09667ac0e2d77f19addd278f3efc4
- SHA512
  
  ba3fd31eed9e79fd2fb495cfe86fa81224634d9087e218ecdfdc6a92873bd0858abcfe8a694bdefc6f2546f594a506f059e787fcd80328e8b3876e52b34f4d55
- SSDEEP
  
  384:asjPGY2HXgrkEYYhQ98E8I1XAV/QcaYpATUgch1A9NB/erxFpk2Zb/:aePG5H8XhKD8ISZQjkgs1lxFVb/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2