89b166cb256b54a59547e06c8595664c2f5273c5053748a7c3008d37c93a629d | Triage

Sharing

General

Target

89b166cb256b54a59547e06c8595664c2f5273c5053748a7c3008d37c93a629d
Size

187KB
Sample

221011-cx3lfsbab2
MD5

6e597c5cc2d1f6002fbdfa1c8930687c
SHA1

1b914988d782d81bcec9f0913390bc2cd2bfdd5d
SHA256

89b166cb256b54a59547e06c8595664c2f5273c5053748a7c3008d37c93a629d
SHA512

cd5e138e485d82a31d3dfab6dceac62552bb25b9d6624939404a6910ad63873184d1fc69af79db6425a3ea6bd7766f765740bf33b2e51d3f9ba15429dc97e908
SSDEEP

3072:gbecw8GlS2+646tawgD4zuwhPKUH0wHKtXdmpnZ:/lD+646tazDkZUnM

Score

7^/10

Malware Config

Targets

- Target
  
  89b166cb256b54a59547e06c8595664c2f5273c5053748a7c3008d37c93a629d
- Size
  
  187KB
- MD5
  
  6e597c5cc2d1f6002fbdfa1c8930687c
- SHA1
  
  1b914988d782d81bcec9f0913390bc2cd2bfdd5d
- SHA256
  
  89b166cb256b54a59547e06c8595664c2f5273c5053748a7c3008d37c93a629d
- SHA512
  
  cd5e138e485d82a31d3dfab6dceac62552bb25b9d6624939404a6910ad63873184d1fc69af79db6425a3ea6bd7766f765740bf33b2e51d3f9ba15429dc97e908
- SSDEEP
  
  3072:gbecw8GlS2+646tawgD4zuwhPKUH0wHKtXdmpnZ:/lD+646tazDkZUnM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2