5d1eb11b6bc09d35fc0e251aebfcdaeecd3a28ce549524d25142397c1dd401b2 | Triage

Sharing

General

Target

5d1eb11b6bc09d35fc0e251aebfcdaeecd3a28ce549524d25142397c1dd401b2
Size

172KB
Sample

221011-ffnbzsfag5
MD5

6ab96b32cef2d586a8b029f030128be0
SHA1

c1fd34ddae00189542e02d51150d4c4629ca4940
SHA256

5d1eb11b6bc09d35fc0e251aebfcdaeecd3a28ce549524d25142397c1dd401b2
SHA512

afb025a1ac1ad2d50631c408589ad56ec0b51b02aad7a6791228c6df0bc3b541adf04aa7c9a19f23a70511463e990bcc6c6dbabd2b138508482a91ed8b5dbf42
SSDEEP

1536:fuQPJYqUmnuWiBr3OGx946A0xZdRF0tctlxsxIZk9JqQWQgA:Esnz2ZdRF0tw7TjbA

Score

7^/10

Malware Config

Targets

- Target
  
  5d1eb11b6bc09d35fc0e251aebfcdaeecd3a28ce549524d25142397c1dd401b2
- Size
  
  172KB
- MD5
  
  6ab96b32cef2d586a8b029f030128be0
- SHA1
  
  c1fd34ddae00189542e02d51150d4c4629ca4940
- SHA256
  
  5d1eb11b6bc09d35fc0e251aebfcdaeecd3a28ce549524d25142397c1dd401b2
- SHA512
  
  afb025a1ac1ad2d50631c408589ad56ec0b51b02aad7a6791228c6df0bc3b541adf04aa7c9a19f23a70511463e990bcc6c6dbabd2b138508482a91ed8b5dbf42
- SSDEEP
  
  1536:fuQPJYqUmnuWiBr3OGx946A0xZdRF0tctlxsxIZk9JqQWQgA:Esnz2ZdRF0tw7TjbA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2