a6286bf3f20c41322009bf7e5dc9397e847a3744ca412e9f517e067bbfc3114f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6286bf3f20c41322009bf7e5dc9397e847a3744ca412e9f517e067bbfc3114f
Size

92KB
Sample

221002-h14ktaefdk
MD5

71d1508adbf838e78579f578852db790
SHA1

0920bcb5dd919ed470d1aa96e4bb2d56a4b04c41
SHA256

a6286bf3f20c41322009bf7e5dc9397e847a3744ca412e9f517e067bbfc3114f
SHA512

e84bda8569aa34303aad20ceda09ca8eb85ae5a30e69ac0333df8fb08f7601b44c5a04312c8df153bfc588ee610910e945ff2493bd5f9c36ab326c9e17184a31
SSDEEP

1536:eFQ/3kSxFU0i2TqnuzQ6GDNNMlRQYWAHXh2W18LN2sqb5P5WEZrDBo+xI6r4Qip:tkSxa0i2TquzQ6GDNNMfQYWAHXh3yLNb

Score

7^/10

Malware Config

Targets

- Target
  
  a6286bf3f20c41322009bf7e5dc9397e847a3744ca412e9f517e067bbfc3114f
- Size
  
  92KB
- MD5
  
  71d1508adbf838e78579f578852db790
- SHA1
  
  0920bcb5dd919ed470d1aa96e4bb2d56a4b04c41
- SHA256
  
  a6286bf3f20c41322009bf7e5dc9397e847a3744ca412e9f517e067bbfc3114f
- SHA512
  
  e84bda8569aa34303aad20ceda09ca8eb85ae5a30e69ac0333df8fb08f7601b44c5a04312c8df153bfc588ee610910e945ff2493bd5f9c36ab326c9e17184a31
- SSDEEP
  
  1536:eFQ/3kSxFU0i2TqnuzQ6GDNNMlRQYWAHXh2W18LN2sqb5P5WEZrDBo+xI6r4Qip:tkSxa0i2TquzQ6GDNNMfQYWAHXh3yLNb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2