687c917468b6b40592d1f293dcde689e3e204b8c58ec9ad7370c5b8f2356a99d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

687c917468b6b40592d1f293dcde689e3e204b8c58ec9ad7370c5b8f2356a99d
Size

96KB
Sample

221012-wltnyseea8
MD5

79e31a5353ed94e99e287346ad003477
SHA1

038eac2fb4ba90da5169effeee8ec30bc0e98703
SHA256

687c917468b6b40592d1f293dcde689e3e204b8c58ec9ad7370c5b8f2356a99d
SHA512

e9de8eba13311108aa1d7bd7f45e8640836b6ecba4057ee36bb738c2b15ec6aaf2bddb6f2b59c0f8abcfa6e8208beea7b3d0111e028ee63c7e9c6c868720e53f
SSDEEP

1536:wRSnTZfr0od8rUhy3edOjL/iJBR4MfpheJVxvcHOG7FIy:rD0oZhy1CJBR4MfXeJVxvcHOG7FIy

Score

7^/10

Malware Config

Targets

- Target
  
  687c917468b6b40592d1f293dcde689e3e204b8c58ec9ad7370c5b8f2356a99d
- Size
  
  96KB
- MD5
  
  79e31a5353ed94e99e287346ad003477
- SHA1
  
  038eac2fb4ba90da5169effeee8ec30bc0e98703
- SHA256
  
  687c917468b6b40592d1f293dcde689e3e204b8c58ec9ad7370c5b8f2356a99d
- SHA512
  
  e9de8eba13311108aa1d7bd7f45e8640836b6ecba4057ee36bb738c2b15ec6aaf2bddb6f2b59c0f8abcfa6e8208beea7b3d0111e028ee63c7e9c6c868720e53f
- SSDEEP
  
  1536:wRSnTZfr0od8rUhy3edOjL/iJBR4MfpheJVxvcHOG7FIy:rD0oZhy1CJBR4MfXeJVxvcHOG7FIy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2