11728858fd4d59c99b7f44ef21f7642db925687fbd5a7e5089b0b1b04491af9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

11728858fd4d59c99b7f44ef21f7642db925687fbd5a7e5089b0b1b04491af9e
Size

43KB
Sample

221011-y7czfadbaq
MD5

6f84a1ae95141a6f36498c82eacd03e0
SHA1

63b3e3f81bfb6cfbd6d8980781963362038553b7
SHA256

11728858fd4d59c99b7f44ef21f7642db925687fbd5a7e5089b0b1b04491af9e
SHA512

2b5c706483c79bc1b9cf20630616f84829fcfc57ae329eecfb31687f26151c1243765300bd1697544b993c4bf38cf3e6fde21d774b6321fa2ddff85b8e60f8ed
SSDEEP

384:jOY7rotLk7qKZwr1D+um22Nw/tXRmmEtrNxvb53y2DCuLfgMBK2VuJYgHMOC8zEh:jO8+Y7Do1jDaw/q3Nm2VsMc1MOo

Score

7^/10

Malware Config

Targets

- Target
  
  11728858fd4d59c99b7f44ef21f7642db925687fbd5a7e5089b0b1b04491af9e
- Size
  
  43KB
- MD5
  
  6f84a1ae95141a6f36498c82eacd03e0
- SHA1
  
  63b3e3f81bfb6cfbd6d8980781963362038553b7
- SHA256
  
  11728858fd4d59c99b7f44ef21f7642db925687fbd5a7e5089b0b1b04491af9e
- SHA512
  
  2b5c706483c79bc1b9cf20630616f84829fcfc57ae329eecfb31687f26151c1243765300bd1697544b993c4bf38cf3e6fde21d774b6321fa2ddff85b8e60f8ed
- SSDEEP
  
  384:jOY7rotLk7qKZwr1D+um22Nw/tXRmmEtrNxvb53y2DCuLfgMBK2VuJYgHMOC8zEh:jO8+Y7Do1jDaw/q3Nm2VsMc1MOo
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2