fa9054c2360af18e29931f7b262dec864c0685ab048e8e98e4d63387f58aa19d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fa9054c2360af18e29931f7b262dec864c0685ab048e8e98e4d63387f58aa19d
Size

88KB
Sample

221002-1tfjhscdb3
MD5

3bef287a53a23e2052219b7d73f4ef40
SHA1

48b62fec80a5301f091b8cc87a843d5f5443e39a
SHA256

fa9054c2360af18e29931f7b262dec864c0685ab048e8e98e4d63387f58aa19d
SHA512

8f6e857240ede5f43ef0fa5b0e18e4534b1bc4e0663c5e0b48a5ae31f61b7824ca1f92fe622f701c6404d8abf0402382f1a85385fb4a17a8f6d325d581b9e79b
SSDEEP

1536:xpFrupx9oS7mOTEffZxid/sSTUr0cLSyEmiXeaxWw:xjupxT7rdJTUr0cLSyEJXdWw

Score

7^/10

Malware Config

Targets

- Target
  
  fa9054c2360af18e29931f7b262dec864c0685ab048e8e98e4d63387f58aa19d
- Size
  
  88KB
- MD5
  
  3bef287a53a23e2052219b7d73f4ef40
- SHA1
  
  48b62fec80a5301f091b8cc87a843d5f5443e39a
- SHA256
  
  fa9054c2360af18e29931f7b262dec864c0685ab048e8e98e4d63387f58aa19d
- SHA512
  
  8f6e857240ede5f43ef0fa5b0e18e4534b1bc4e0663c5e0b48a5ae31f61b7824ca1f92fe622f701c6404d8abf0402382f1a85385fb4a17a8f6d325d581b9e79b
- SSDEEP
  
  1536:xpFrupx9oS7mOTEffZxid/sSTUr0cLSyEmiXeaxWw:xjupxT7rdJTUr0cLSyEJXdWw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2