General

  • Target

    8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec

  • Size

    223KB

  • Sample

    220806-hh44mabfgr

  • MD5

    8efdbfe8c5cb0cacaca53e190caca052

  • SHA1

    74961a5b6cdc720b39ba613da403fe6ffd44c2ec

  • SHA256

    8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec

  • SHA512

    fb39103cc20b3ef7e461152ac5cfcedf91c39d3e7f8132496cb836560d95a347c353e8050e1fbcad190a691fc8e5a4f1fa6ba7f626c869ccb9864725bdb1bb88

Score
7/10

Malware Config

Targets

    • Target

      8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec

    • Size

      223KB

    • MD5

      8efdbfe8c5cb0cacaca53e190caca052

    • SHA1

      74961a5b6cdc720b39ba613da403fe6ffd44c2ec

    • SHA256

      8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec

    • SHA512

      fb39103cc20b3ef7e461152ac5cfcedf91c39d3e7f8132496cb836560d95a347c353e8050e1fbcad190a691fc8e5a4f1fa6ba7f626c869ccb9864725bdb1bb88

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Tasks