d28858da6290c6461d9c839cda107370aa290973bd6c6189ce09dbc93a3cbdb7 | Triage

Sharing

General

Target

d28858da6290c6461d9c839cda107370aa290973bd6c6189ce09dbc93a3cbdb7
Size

104KB
Sample

221011-c2jn5sbcfm
MD5

681de176057df26a395f2d76465f9ac0
SHA1

356acff35eeaadc0a1c2a9767259d0962f0ad875
SHA256

d28858da6290c6461d9c839cda107370aa290973bd6c6189ce09dbc93a3cbdb7
SHA512

165270af7779d6c5ba1a77fdfd967d805d2d34d76166cc363385f7228b1c8a09c40fe358e4fadda45a36f53d50f26b7f0207b3de99289f2378c2f15007207f86
SSDEEP

1536:Xqxb38MhDn2fYRgvh9nL6yId2xdMGfR9TQ2g8cifaxK2jd3psK/OV16PZdpM2Kc4:5QRqh9nL6K7f3ixF2o9RH5BbtsvHAzq

Score

7^/10

Malware Config

Targets

- Target
  
  d28858da6290c6461d9c839cda107370aa290973bd6c6189ce09dbc93a3cbdb7
- Size
  
  104KB
- MD5
  
  681de176057df26a395f2d76465f9ac0
- SHA1
  
  356acff35eeaadc0a1c2a9767259d0962f0ad875
- SHA256
  
  d28858da6290c6461d9c839cda107370aa290973bd6c6189ce09dbc93a3cbdb7
- SHA512
  
  165270af7779d6c5ba1a77fdfd967d805d2d34d76166cc363385f7228b1c8a09c40fe358e4fadda45a36f53d50f26b7f0207b3de99289f2378c2f15007207f86
- SSDEEP
  
  1536:Xqxb38MhDn2fYRgvh9nL6yId2xdMGfR9TQ2g8cifaxK2jd3psK/OV16PZdpM2Kc4:5QRqh9nL6K7f3ixF2o9RH5BbtsvHAzq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2