73e92da6c71a04784a80a0415b4f85eb739e1d36f9978b5bb78ec7bf951038a6 | Triage

Sharing

General

Target

73e92da6c71a04784a80a0415b4f85eb739e1d36f9978b5bb78ec7bf951038a6
Size

883KB
Sample

220919-q4vfbabed5
MD5

2b24b08789ff8a55624bfbadddd24ad1
SHA1

80c61f3961fd54d28db7a44d92715a4bac3dd83d
SHA256

73e92da6c71a04784a80a0415b4f85eb739e1d36f9978b5bb78ec7bf951038a6
SHA512

479b4f74a4d3e76759f394c2ee9fce2f0de4c33ef84bfa6f07d61ca735b015e1c10d2842c3bbc743cd585bf0cebed3cb4b12c8a7683fb0328e92b01f76661ca6
SSDEEP

24576:4ynccYTstXyiHwtB1H6ti/PNJ4piHwtB1H6ti/PNJ4C:4yrPyiHwei/PApiHwei/PAC

Score

7^/10

Malware Config

Targets

- Target
  
  73e92da6c71a04784a80a0415b4f85eb739e1d36f9978b5bb78ec7bf951038a6
- Size
  
  883KB
- MD5
  
  2b24b08789ff8a55624bfbadddd24ad1
- SHA1
  
  80c61f3961fd54d28db7a44d92715a4bac3dd83d
- SHA256
  
  73e92da6c71a04784a80a0415b4f85eb739e1d36f9978b5bb78ec7bf951038a6
- SHA512
  
  479b4f74a4d3e76759f394c2ee9fce2f0de4c33ef84bfa6f07d61ca735b015e1c10d2842c3bbc743cd585bf0cebed3cb4b12c8a7683fb0328e92b01f76661ca6
- SSDEEP
  
  24576:4ynccYTstXyiHwtB1H6ti/PNJ4piHwtB1H6ti/PNJ4C:4yrPyiHwei/PApiHwei/PAC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2