8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec | Triage

Sharing

General

Target

8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec
Size

223KB
Sample

220806-hh44mabfgr
MD5

8efdbfe8c5cb0cacaca53e190caca052
SHA1

74961a5b6cdc720b39ba613da403fe6ffd44c2ec
SHA256

8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec
SHA512

fb39103cc20b3ef7e461152ac5cfcedf91c39d3e7f8132496cb836560d95a347c353e8050e1fbcad190a691fc8e5a4f1fa6ba7f626c869ccb9864725bdb1bb88

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec
- Size
  
  223KB
- MD5
  
  8efdbfe8c5cb0cacaca53e190caca052
- SHA1
  
  74961a5b6cdc720b39ba613da403fe6ffd44c2ec
- SHA256
  
  8d687ad5eaee819a0288bf65c8139a35679339c404ac589494caecd69beef0ec
- SHA512
  
  fb39103cc20b3ef7e461152ac5cfcedf91c39d3e7f8132496cb836560d95a347c353e8050e1fbcad190a691fc8e5a4f1fa6ba7f626c869ccb9864725bdb1bb88
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1