77edcc4d069631353f0c1e06fde91606f7d60921ea2f4a29d88d2ed7ed829130 | Triage

Sharing

General

Target

77edcc4d069631353f0c1e06fde91606f7d60921ea2f4a29d88d2ed7ed829130
Size

498KB
Sample

220919-s12rbsaghm
MD5

be298abe1a38940f175ef8a2205aebc7
SHA1

1b40a607a783db46e4299db264840d198930f205
SHA256

77edcc4d069631353f0c1e06fde91606f7d60921ea2f4a29d88d2ed7ed829130
SHA512

8625ee0cbada999ac8b193100aaa20cfee0f3cc5e24432ebe687907a1a910e57159fbe54efc21941b9e9ac715b73c5603f1f6c809b83f565220ccff902eb8526
SSDEEP

6144:kqnUYmhvqRQi9kbbOzIxwA6LKG7NF371fFFr12eCTRmKtmiMAwfNX9WBD05eABlb:tUYm1sQi9kfVwzFrr1f8TttpOP5eAPb

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  77edcc4d069631353f0c1e06fde91606f7d60921ea2f4a29d88d2ed7ed829130
- Size
  
  498KB
- MD5
  
  be298abe1a38940f175ef8a2205aebc7
- SHA1
  
  1b40a607a783db46e4299db264840d198930f205
- SHA256
  
  77edcc4d069631353f0c1e06fde91606f7d60921ea2f4a29d88d2ed7ed829130
- SHA512
  
  8625ee0cbada999ac8b193100aaa20cfee0f3cc5e24432ebe687907a1a910e57159fbe54efc21941b9e9ac715b73c5603f1f6c809b83f565220ccff902eb8526
- SSDEEP
  
  6144:kqnUYmhvqRQi9kbbOzIxwA6LKG7NF371fFFr12eCTRmKtmiMAwfNX9WBD05eABlb:tUYm1sQi9kfVwzFrr1f8TttpOP5eAPb
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2