6b4a56b85f6364d1d50b5202ebc0fa289c1a8a85951b64b5b08fe6c0bfff1587 | Triage

Sharing

General

Target

6b4a56b85f6364d1d50b5202ebc0fa289c1a8a85951b64b5b08fe6c0bfff1587
Size

706KB
Sample

220919-tw5g4accer
MD5

03c985ac05c0ff63d8761aacc9b02729
SHA1

5a281cbaf11aca4f831155997f6c5845dbe71d6c
SHA256

6b4a56b85f6364d1d50b5202ebc0fa289c1a8a85951b64b5b08fe6c0bfff1587
SHA512

e9ef19b1643d68ba8848fdf7645c5b3f13145cb29ac9f6b19ce1a1fc9dc47007519d241b99cd0b3a3d9fb84b4de57fe38be3a8cc4b77b5bd5cb75d0e43ceb9d4
SSDEEP

12288:gzy6rRxE1bpnfkjuVtPuVcG6YO/uV1ObuVtFnvysf1Q1TkAQTuiHd6nwc:z6rTgbp8iVtGVcG9pV1OqVtFnSQT396P

Score

7^/10

Malware Config

Targets

- Target
  
  6b4a56b85f6364d1d50b5202ebc0fa289c1a8a85951b64b5b08fe6c0bfff1587
- Size
  
  706KB
- MD5
  
  03c985ac05c0ff63d8761aacc9b02729
- SHA1
  
  5a281cbaf11aca4f831155997f6c5845dbe71d6c
- SHA256
  
  6b4a56b85f6364d1d50b5202ebc0fa289c1a8a85951b64b5b08fe6c0bfff1587
- SHA512
  
  e9ef19b1643d68ba8848fdf7645c5b3f13145cb29ac9f6b19ce1a1fc9dc47007519d241b99cd0b3a3d9fb84b4de57fe38be3a8cc4b77b5bd5cb75d0e43ceb9d4
- SSDEEP
  
  12288:gzy6rRxE1bpnfkjuVtPuVcG6YO/uV1ObuVtFnvysf1Q1TkAQTuiHd6nwc:z6rTgbp8iVtGVcG9pV1OqVtFnSQT396P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2