c670e999fbff85ff3a71a0b3b9b8cbc41c1646d27fa294105ada62e246a502e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c670e999fbff85ff3a71a0b3b9b8cbc41c1646d27fa294105ada62e246a502e4
Size

112KB
Sample

221011-yxe12scdc2
MD5

77ab37f5f541a4f753a5548dbe8bd660
SHA1

303a5c2d89b543905d129a775b1fc71d5ed81055
SHA256

c670e999fbff85ff3a71a0b3b9b8cbc41c1646d27fa294105ada62e246a502e4
SHA512

a3d2c24376980b301ed67760089c58167879935dd2da5ae824b7e37d37421d864d1b20d6c51fce902cd8bfd4a80b7bd11f3eac2902957dd3e48bb1c316e568c5
SSDEEP

3072:tGaZGmTtov/ebUocRiozmNijlQCPaSz2:tG+9SIUocRiYpQCySq

Score

7^/10

Malware Config

Targets

- Target
  
  c670e999fbff85ff3a71a0b3b9b8cbc41c1646d27fa294105ada62e246a502e4
- Size
  
  112KB
- MD5
  
  77ab37f5f541a4f753a5548dbe8bd660
- SHA1
  
  303a5c2d89b543905d129a775b1fc71d5ed81055
- SHA256
  
  c670e999fbff85ff3a71a0b3b9b8cbc41c1646d27fa294105ada62e246a502e4
- SHA512
  
  a3d2c24376980b301ed67760089c58167879935dd2da5ae824b7e37d37421d864d1b20d6c51fce902cd8bfd4a80b7bd11f3eac2902957dd3e48bb1c316e568c5
- SSDEEP
  
  3072:tGaZGmTtov/ebUocRiozmNijlQCPaSz2:tG+9SIUocRiYpQCySq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2