197d58734fbf16cc95a3d70b27bcea884a2c357443175ffa4de86955624b8487 | Triage

Sharing

General

Target

197d58734fbf16cc95a3d70b27bcea884a2c357443175ffa4de86955624b8487
Size

1.8MB
Sample

220608-q33qasdeh4
MD5

cc122943225cf40ca403e2ee72304b7b
SHA1

75e02cb85f9735c2aaf5a7f5d0c1bfd14006d5b9
SHA256

197d58734fbf16cc95a3d70b27bcea884a2c357443175ffa4de86955624b8487
SHA512

7e5169d4f613f16be15397064a6dc452a313142ae4db099717d7970163a890fe20ef7e5dcfeda2ccee47e3518f1f4664228405adc087d00b74b28f47e31b7cac

Score

7^/10

Malware Config

Targets

- Target
  
  197d58734fbf16cc95a3d70b27bcea884a2c357443175ffa4de86955624b8487
- Size
  
  1.8MB
- MD5
  
  cc122943225cf40ca403e2ee72304b7b
- SHA1
  
  75e02cb85f9735c2aaf5a7f5d0c1bfd14006d5b9
- SHA256
  
  197d58734fbf16cc95a3d70b27bcea884a2c357443175ffa4de86955624b8487
- SHA512
  
  7e5169d4f613f16be15397064a6dc452a313142ae4db099717d7970163a890fe20ef7e5dcfeda2ccee47e3518f1f4664228405adc087d00b74b28f47e31b7cac
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2