02ef4243c21ba64d3622b0cdba21a598ca12da3b5fe5d5ba0e3871471e1cdcfe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

02ef4243c21ba64d3622b0cdba21a598ca12da3b5fe5d5ba0e3871471e1cdcfe
Size

64KB
Sample

220919-kwn1nsddhj
MD5

a420f9ca044c493919b4054c6ffdc870
SHA1

ed39b918f4f349ec5c65d9ab8c42261fff8627e6
SHA256

02ef4243c21ba64d3622b0cdba21a598ca12da3b5fe5d5ba0e3871471e1cdcfe
SHA512

a32818f4d7dedbfb2c68e4560e77f096ccc9fd8b4bc4e6d4151f41c770110d3095ffb5cfff3181410f7a5d01baf931e0bddfde00a4a98dbcc1f1bb5b4333d9f3
SSDEEP

1536:xET64WKch3dQzOwtwSI3yHBUJu5OXIvzpjIp/L:xq64Wx3dmqSSyHBknGzpjA/L

Score

7^/10

Malware Config

Targets

- Target
  
  02ef4243c21ba64d3622b0cdba21a598ca12da3b5fe5d5ba0e3871471e1cdcfe
- Size
  
  64KB
- MD5
  
  a420f9ca044c493919b4054c6ffdc870
- SHA1
  
  ed39b918f4f349ec5c65d9ab8c42261fff8627e6
- SHA256
  
  02ef4243c21ba64d3622b0cdba21a598ca12da3b5fe5d5ba0e3871471e1cdcfe
- SHA512
  
  a32818f4d7dedbfb2c68e4560e77f096ccc9fd8b4bc4e6d4151f41c770110d3095ffb5cfff3181410f7a5d01baf931e0bddfde00a4a98dbcc1f1bb5b4333d9f3
- SSDEEP
  
  1536:xET64WKch3dQzOwtwSI3yHBUJu5OXIvzpjIp/L:xq64Wx3dmqSSyHBknGzpjA/L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2