9ce8cbf121eb8dabd9ecdf7fc2e1e738efa86f07298936e48c798d94205c7899 | Triage

Sharing

General

Target

9ce8cbf121eb8dabd9ecdf7fc2e1e738efa86f07298936e48c798d94205c7899
Size

88KB
Sample

221003-tvkrasefa6
MD5

2362cb46892e8b82c71bc3703ebde6ac
SHA1

6033b44c2e4097da7fca05ce8f59bf51988d4061
SHA256

9ce8cbf121eb8dabd9ecdf7fc2e1e738efa86f07298936e48c798d94205c7899
SHA512

08a2c29c3f14cb07f7301fb797751e4628e50a2257d8c16273d0731fc603f8ede313caa54e6be9b2068daefe0093382a9928464252e308e289ab13a85d699707
SSDEEP

768:UOLeUHnkt4dEAUXR7urvzuSB/VMdBaejnXjiNYfXA9sugxP7CVWDQGIayHVa:beUHkSdEAUX1sMFDGMOsugxP7C1aSE

Score

7^/10

Malware Config

Targets

- Target
  
  9ce8cbf121eb8dabd9ecdf7fc2e1e738efa86f07298936e48c798d94205c7899
- Size
  
  88KB
- MD5
  
  2362cb46892e8b82c71bc3703ebde6ac
- SHA1
  
  6033b44c2e4097da7fca05ce8f59bf51988d4061
- SHA256
  
  9ce8cbf121eb8dabd9ecdf7fc2e1e738efa86f07298936e48c798d94205c7899
- SHA512
  
  08a2c29c3f14cb07f7301fb797751e4628e50a2257d8c16273d0731fc603f8ede313caa54e6be9b2068daefe0093382a9928464252e308e289ab13a85d699707
- SSDEEP
  
  768:UOLeUHnkt4dEAUXR7urvzuSB/VMdBaejnXjiNYfXA9sugxP7CVWDQGIayHVa:beUHkSdEAUX1sMFDGMOsugxP7C1aSE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2