63ac6db207f366915e15e6679e97c04d56aefc206bed1663fcfe7312b695471e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63ac6db207f366915e15e6679e97c04d56aefc206bed1663fcfe7312b695471e
Size

96KB
Sample

221011-r2cm6aaebm
MD5

7c7f374bce8908e93c55df048bf1cbe6
SHA1

08e71097499221466fa1a766f64c97b0b6b98c16
SHA256

63ac6db207f366915e15e6679e97c04d56aefc206bed1663fcfe7312b695471e
SHA512

6510c4197c0fe13138eb476efa424d983f8904d04dc2759cef59045bf5f8f82605bd363063d73bd85b509a867f88525d985f348ed22cadd8fda7c17686570f5b
SSDEEP

1536:tRrCEP0GRCx1WDuQ4XRrzIqOR7DGwCeC2m:7JCxi4VIVBCV

Score

7^/10

Malware Config

Targets

- Target
  
  63ac6db207f366915e15e6679e97c04d56aefc206bed1663fcfe7312b695471e
- Size
  
  96KB
- MD5
  
  7c7f374bce8908e93c55df048bf1cbe6
- SHA1
  
  08e71097499221466fa1a766f64c97b0b6b98c16
- SHA256
  
  63ac6db207f366915e15e6679e97c04d56aefc206bed1663fcfe7312b695471e
- SHA512
  
  6510c4197c0fe13138eb476efa424d983f8904d04dc2759cef59045bf5f8f82605bd363063d73bd85b509a867f88525d985f348ed22cadd8fda7c17686570f5b
- SSDEEP
  
  1536:tRrCEP0GRCx1WDuQ4XRrzIqOR7DGwCeC2m:7JCxi4VIVBCV
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2