5b6bd342a33a9b443f100a74a8785f6329bb7d80ffa5d52019fab47059aaa0df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b6bd342a33a9b443f100a74a8785f6329bb7d80ffa5d52019fab47059aaa0df
Size

3.6MB
Sample

220919-1ndsqsecbj
MD5

c2d2571d0e214dbbcc8982b16e58100f
SHA1

5205d8bd8a31f192317816b3165bbdaeea42f436
SHA256

5b6bd342a33a9b443f100a74a8785f6329bb7d80ffa5d52019fab47059aaa0df
SHA512

9a1f6540b8716da72ddcfb645ba4e1ba4b03ab96ef248d8c5f944028d18b666c3c51bba88bd21a38a28968cd545e0050c9d0ca23ff8401563a7b655f65674e5f
SSDEEP

98304:p/pFQ4GnYB3VBMKrx1/sfw48t7o148jWbWWqquZQjXQ3:pBC4GY9jljH7o+RbWCzy

Score

7^/10

Malware Config

Targets

- Target
  
  5b6bd342a33a9b443f100a74a8785f6329bb7d80ffa5d52019fab47059aaa0df
- Size
  
  3.6MB
- MD5
  
  c2d2571d0e214dbbcc8982b16e58100f
- SHA1
  
  5205d8bd8a31f192317816b3165bbdaeea42f436
- SHA256
  
  5b6bd342a33a9b443f100a74a8785f6329bb7d80ffa5d52019fab47059aaa0df
- SHA512
  
  9a1f6540b8716da72ddcfb645ba4e1ba4b03ab96ef248d8c5f944028d18b666c3c51bba88bd21a38a28968cd545e0050c9d0ca23ff8401563a7b655f65674e5f
- SSDEEP
  
  98304:p/pFQ4GnYB3VBMKrx1/sfw48t7o148jWbWWqquZQjXQ3:pBC4GY9jljH7o+RbWCzy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2