b5734527da2d284db370cdc0015a68b8690a1f9359185ffcb76d5ed11525f641 | Triage

Sharing

General

Target

b5734527da2d284db370cdc0015a68b8690a1f9359185ffcb76d5ed11525f641
Size

160KB
Sample

221003-kcwleagehk
MD5

6e429705f1efa7215f517681be189309
SHA1

3b9ca736efeb641cbbeafa25bf3f32a7fd60241e
SHA256

b5734527da2d284db370cdc0015a68b8690a1f9359185ffcb76d5ed11525f641
SHA512

de14f4ba7b36734dc28c8db2a42dae66dcb998d60365cde3f2ce9ae4b35b1b51d65bda1fef79a15bde9985f6baa14b3f68b44dd27d40c0e1176da98925f4f720
SSDEEP

3072:8sDV6Az1QWgFvYGnJd6KpZV3uTN9WU/G9h3Gw590KqkbmzALbvl6:tQAbgFvYGJd6KpZV3uTN9WU/G9h2w59X

Score

7^/10

Malware Config

Targets

- Target
  
  b5734527da2d284db370cdc0015a68b8690a1f9359185ffcb76d5ed11525f641
- Size
  
  160KB
- MD5
  
  6e429705f1efa7215f517681be189309
- SHA1
  
  3b9ca736efeb641cbbeafa25bf3f32a7fd60241e
- SHA256
  
  b5734527da2d284db370cdc0015a68b8690a1f9359185ffcb76d5ed11525f641
- SHA512
  
  de14f4ba7b36734dc28c8db2a42dae66dcb998d60365cde3f2ce9ae4b35b1b51d65bda1fef79a15bde9985f6baa14b3f68b44dd27d40c0e1176da98925f4f720
- SSDEEP
  
  3072:8sDV6Az1QWgFvYGnJd6KpZV3uTN9WU/G9h3Gw590KqkbmzALbvl6:tQAbgFvYGJd6KpZV3uTN9WU/G9h2w59X
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2