2af4a9dc9dedf143149456fc9949c9dcad00fb63c13454238a292baac2c6f231 | Triage

Sharing

General

Target

2af4a9dc9dedf143149456fc9949c9dcad00fb63c13454238a292baac2c6f231
Size

35KB
Sample

220919-l7hhpsgaan
MD5

73a28e35d84fb623b2bb7b5c946f230d
SHA1

5e7aaee6f9d9d78c8e1a335fef4fd7c3540c5b69
SHA256

2af4a9dc9dedf143149456fc9949c9dcad00fb63c13454238a292baac2c6f231
SHA512

2d07c0c0ca3e29f73386e51d780f35e8854a9dc74d7c05c3d5cfcc67040de725127dcf86c5b758ea7e6aa98e8814e0668908580aa5e53ec152879561fc3fc866
SSDEEP

768:5Kgphok5Fvwh62at6oBa8F7mlXPw4AwySaEtVvwIioyPyYebfC:5KMfwM2ae8F78Pw4ASDVIIpyaxfC

Score

7^/10

Malware Config

Targets

- Target
  
  2af4a9dc9dedf143149456fc9949c9dcad00fb63c13454238a292baac2c6f231
- Size
  
  35KB
- MD5
  
  73a28e35d84fb623b2bb7b5c946f230d
- SHA1
  
  5e7aaee6f9d9d78c8e1a335fef4fd7c3540c5b69
- SHA256
  
  2af4a9dc9dedf143149456fc9949c9dcad00fb63c13454238a292baac2c6f231
- SHA512
  
  2d07c0c0ca3e29f73386e51d780f35e8854a9dc74d7c05c3d5cfcc67040de725127dcf86c5b758ea7e6aa98e8814e0668908580aa5e53ec152879561fc3fc866
- SSDEEP
  
  768:5Kgphok5Fvwh62at6oBa8F7mlXPw4AwySaEtVvwIioyPyYebfC:5KMfwM2ae8F78Pw4ASDVIIpyaxfC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2