297f985c0923ffa9d0afc89dfbba2007ce4c9f07227784b0c6c80285b2ad02c9 | Triage

Sharing

General

Target

297f985c0923ffa9d0afc89dfbba2007ce4c9f07227784b0c6c80285b2ad02c9
Size

72KB
Sample

221002-akt3faeehm
MD5

679f89ab216c487d431a7f515e9329f0
SHA1

56307c457daf8bc1ebc0f254b71e909fc249db52
SHA256

297f985c0923ffa9d0afc89dfbba2007ce4c9f07227784b0c6c80285b2ad02c9
SHA512

296d4fdb983464d59afbea1544ae829ef61f3c362868e5083d09ad234d683b0a696f7f0396ef8fce3b58281d74d5b720365b44dad8e0dcdb1bd8b2f4623f5fb5
SSDEEP

768:9zD1iS5KkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKVhO:5NxirEJycA8Dy9Suo6zCq

Score

7^/10

Malware Config

Targets

- Target
  
  297f985c0923ffa9d0afc89dfbba2007ce4c9f07227784b0c6c80285b2ad02c9
- Size
  
  72KB
- MD5
  
  679f89ab216c487d431a7f515e9329f0
- SHA1
  
  56307c457daf8bc1ebc0f254b71e909fc249db52
- SHA256
  
  297f985c0923ffa9d0afc89dfbba2007ce4c9f07227784b0c6c80285b2ad02c9
- SHA512
  
  296d4fdb983464d59afbea1544ae829ef61f3c362868e5083d09ad234d683b0a696f7f0396ef8fce3b58281d74d5b720365b44dad8e0dcdb1bd8b2f4623f5fb5
- SSDEEP
  
  768:9zD1iS5KkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKVhO:5NxirEJycA8Dy9Suo6zCq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2