30ab6e1746382932ce68ab404cd73132fdf7bea1a52a11b0d428a97e9a08fe14 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

30ab6e1746382932ce68ab404cd73132fdf7bea1a52a11b0d428a97e9a08fe14
Size

63KB
Sample

220919-ks9g7shca7
MD5

5a720e3b33b146eab329aece3540c74c
SHA1

ff3219a259bdcacd48cb7557743712dd2ad6e16b
SHA256

30ab6e1746382932ce68ab404cd73132fdf7bea1a52a11b0d428a97e9a08fe14
SHA512

f593171e1c35b479067efecf105f265398f5f85bc359b9be207474bfebe527376f8368ab0e87c80cbeed89c1005418d95c89c07b767770f318779482cf798755
SSDEEP

1536:uufg6xNUQs0ZEjMPcqHmbBhvI1qWfiuv7tPS0xLDPk:x3xNvaIPk+qWpL1Pk

Score

7^/10

Malware Config

Targets

- Target
  
  30ab6e1746382932ce68ab404cd73132fdf7bea1a52a11b0d428a97e9a08fe14
- Size
  
  63KB
- MD5
  
  5a720e3b33b146eab329aece3540c74c
- SHA1
  
  ff3219a259bdcacd48cb7557743712dd2ad6e16b
- SHA256
  
  30ab6e1746382932ce68ab404cd73132fdf7bea1a52a11b0d428a97e9a08fe14
- SHA512
  
  f593171e1c35b479067efecf105f265398f5f85bc359b9be207474bfebe527376f8368ab0e87c80cbeed89c1005418d95c89c07b767770f318779482cf798755
- SSDEEP
  
  1536:uufg6xNUQs0ZEjMPcqHmbBhvI1qWfiuv7tPS0xLDPk:x3xNvaIPk+qWpL1Pk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2