adfbe5218ef5a0aa13c2f76dad933147e9f1a3a690057a0ad33d5a11ba8a6276 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

EML_PRILIV_0934Â·pdf.exe
Size

1.0MB
Sample

220915-rg9r6adcg4
MD5

d3670d78a5fa5d60f056cab4cd89d0c9
SHA1

3da3764700a4f230558f44430d3db2a0757f1080
SHA256

adfbe5218ef5a0aa13c2f76dad933147e9f1a3a690057a0ad33d5a11ba8a6276
SHA512

9d6840f99a35b25d7e7ef7ef55ef91be5a5d9cb21688243e771b4f07284fa01c1952ec9bcc09f500f505b063dc17d247ddb056011350cb2832b0f1a973f441bf
SSDEEP

12288:DoLrF27XegxbkmeRw5+Kp947xljLLigSIF7bRaAT1t9nvbmjsS+rKb1Mc62:ckSgFkmWwoKL4HjRTF7bLfBvRS+A62

Score

7^/10

Malware Config

Targets

- Target
  
  EML_PRILIV_0934Â·pdf.exe
- Size
  
  1.0MB
- MD5
  
  d3670d78a5fa5d60f056cab4cd89d0c9
- SHA1
  
  3da3764700a4f230558f44430d3db2a0757f1080
- SHA256
  
  adfbe5218ef5a0aa13c2f76dad933147e9f1a3a690057a0ad33d5a11ba8a6276
- SHA512
  
  9d6840f99a35b25d7e7ef7ef55ef91be5a5d9cb21688243e771b4f07284fa01c1952ec9bcc09f500f505b063dc17d247ddb056011350cb2832b0f1a973f441bf
- SSDEEP
  
  12288:DoLrF27XegxbkmeRw5+Kp947xljLLigSIF7bRaAT1t9nvbmjsS+rKb1Mc62:ckSgFkmWwoKL4HjRTF7bLfBvRS+A62
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2