5ee3874fea2a7c0a1d6ce234a934d7d9cc41cbe3e1eb48c4443075c6874f11ae | Triage

Sharing

General

Target

5ee3874fea2a7c0a1d6ce234a934d7d9cc41cbe3e1eb48c4443075c6874f11ae
Size

66KB
Sample

220919-ktw89sddal
MD5

8a87ccb64420febaf0bdf6ac971125b8
SHA1

23175f30c382acfe102cc6470aa347c761e82885
SHA256

5ee3874fea2a7c0a1d6ce234a934d7d9cc41cbe3e1eb48c4443075c6874f11ae
SHA512

13c7b95a72593fb407393669c961d91043cef9cde0dbc26b58b61d65e8ec79ddb87f858eb40f21c9be39a689ccf5f8caf82aab5e330d4e1467882c66a77c8927
SSDEEP

1536:PMPBTxV+1ADAx2p82Ug8KCRO3ZJlb/Lkb3gXC:PMPBgADAs89RGtgcXC

Score

7^/10

Malware Config

Targets

- Target
  
  5ee3874fea2a7c0a1d6ce234a934d7d9cc41cbe3e1eb48c4443075c6874f11ae
- Size
  
  66KB
- MD5
  
  8a87ccb64420febaf0bdf6ac971125b8
- SHA1
  
  23175f30c382acfe102cc6470aa347c761e82885
- SHA256
  
  5ee3874fea2a7c0a1d6ce234a934d7d9cc41cbe3e1eb48c4443075c6874f11ae
- SHA512
  
  13c7b95a72593fb407393669c961d91043cef9cde0dbc26b58b61d65e8ec79ddb87f858eb40f21c9be39a689ccf5f8caf82aab5e330d4e1467882c66a77c8927
- SSDEEP
  
  1536:PMPBTxV+1ADAx2p82Ug8KCRO3ZJlb/Lkb3gXC:PMPBgADAs89RGtgcXC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2