d0ab57fb87853a83a8c0d70431d81b347ac568830feb5930a159000527808316 | Triage

Sharing

General

Target

d0ab57fb87853a83a8c0d70431d81b347ac568830feb5930a159000527808316
Size

104KB
Sample

221002-hz6zjsefak
MD5

6be84036a169d5e14f0f020fc39e9670
SHA1

e072be9678371dea1a1e719b422c2af5e5b90ee1
SHA256

d0ab57fb87853a83a8c0d70431d81b347ac568830feb5930a159000527808316
SHA512

66d17de6c51b2d830e66d5453546e1b8d390e1250c12def6d3881e433f18ec5c593f7d3173559bc70c3487a0b98f52ee04d26701c32d63a32fe3c5e97be4579a
SSDEEP

1536:I2/RpbuqMOnFJ/6NzIcy0rdAS5YLk42tLmmr7pgCKWlMe83ax:I2/yVOFJ/3cy0rB5Yl2tLmupg/1a

Score

7^/10

Malware Config

Targets

- Target
  
  d0ab57fb87853a83a8c0d70431d81b347ac568830feb5930a159000527808316
- Size
  
  104KB
- MD5
  
  6be84036a169d5e14f0f020fc39e9670
- SHA1
  
  e072be9678371dea1a1e719b422c2af5e5b90ee1
- SHA256
  
  d0ab57fb87853a83a8c0d70431d81b347ac568830feb5930a159000527808316
- SHA512
  
  66d17de6c51b2d830e66d5453546e1b8d390e1250c12def6d3881e433f18ec5c593f7d3173559bc70c3487a0b98f52ee04d26701c32d63a32fe3c5e97be4579a
- SSDEEP
  
  1536:I2/RpbuqMOnFJ/6NzIcy0rdAS5YLk42tLmmr7pgCKWlMe83ax:I2/yVOFJ/3cy0rB5Yl2tLmupg/1a
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2