0bea772d037a964571e21e765e7ddc75bc43b11e871d56c736d2d0c06a708520 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0bea772d037a964571e21e765e7ddc75bc43b11e871d56c736d2d0c06a708520
Size

905KB
Sample

221011-23xptsadc8
MD5

6bec05c8f972b5f7c1d000ed99532d50
SHA1

b29aee8578d84d92a9ca595f4d152bc3756d3b0b
SHA256

0bea772d037a964571e21e765e7ddc75bc43b11e871d56c736d2d0c06a708520
SHA512

010dd64e852cb69cfbb602641fc5825dcaf80b8a09dc2657db89b4355d5559478c1b3c5e648527922f1770c6dab108ca05a1180910ebd6ce47b47957182f0678
SSDEEP

12288:gYqgN2IrEkoNk7L6zSZp2ZbrLzSGPu6j2MnMwiDUNjRQNuQzcYY:/rRoNk7BZpI/RPuo2+MwiDUNj0cY

Score

7^/10

Malware Config

Targets

- Target
  
  0bea772d037a964571e21e765e7ddc75bc43b11e871d56c736d2d0c06a708520
- Size
  
  905KB
- MD5
  
  6bec05c8f972b5f7c1d000ed99532d50
- SHA1
  
  b29aee8578d84d92a9ca595f4d152bc3756d3b0b
- SHA256
  
  0bea772d037a964571e21e765e7ddc75bc43b11e871d56c736d2d0c06a708520
- SHA512
  
  010dd64e852cb69cfbb602641fc5825dcaf80b8a09dc2657db89b4355d5559478c1b3c5e648527922f1770c6dab108ca05a1180910ebd6ce47b47957182f0678
- SSDEEP
  
  12288:gYqgN2IrEkoNk7L6zSZp2ZbrLzSGPu6j2MnMwiDUNjRQNuQzcYY:/rRoNk7BZpI/RPuo2+MwiDUNj0cY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2