536d06d66bf139be26d5b3d00b30aeffc3d689f74da62cf1766b6ff1a52015ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

536d06d66bf139be26d5b3d00b30aeffc3d689f74da62cf1766b6ff1a52015ef
Size

131KB
Sample

221002-qscq5aadcm
MD5

75cd418d01e3ac14342e4e78aa44144a
SHA1

6013f58833b5f27ed96994e83b722ac30ad726a3
SHA256

536d06d66bf139be26d5b3d00b30aeffc3d689f74da62cf1766b6ff1a52015ef
SHA512

dfc34951de72b6716f253bf8e9486b3a6813b0bed057648884f3a13d76cbe32b27d6df7e42f149b9717a4aa85fd7ba50aacad98546a540c7a94d79c29f744fe0
SSDEEP

1536:593hcCIsVgrzFicRLeBFBmcvjK+fFVgTZEFoO5MSMdF7yhA2vVWg0505G3VmgiuA:uVrm5Gldivef/Ka7wq5vJX1S6+

Score

7^/10

Malware Config

Targets

- Target
  
  536d06d66bf139be26d5b3d00b30aeffc3d689f74da62cf1766b6ff1a52015ef
- Size
  
  131KB
- MD5
  
  75cd418d01e3ac14342e4e78aa44144a
- SHA1
  
  6013f58833b5f27ed96994e83b722ac30ad726a3
- SHA256
  
  536d06d66bf139be26d5b3d00b30aeffc3d689f74da62cf1766b6ff1a52015ef
- SHA512
  
  dfc34951de72b6716f253bf8e9486b3a6813b0bed057648884f3a13d76cbe32b27d6df7e42f149b9717a4aa85fd7ba50aacad98546a540c7a94d79c29f744fe0
- SSDEEP
  
  1536:593hcCIsVgrzFicRLeBFBmcvjK+fFVgTZEFoO5MSMdF7yhA2vVWg0505G3VmgiuA:uVrm5Gldivef/Ka7wq5vJX1S6+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2