572c9144d98db97ad2a1165b08c74c45f963e0e39ce4f150640efc6c86f66f3b | Triage

Sharing

General

Target

572c9144d98db97ad2a1165b08c74c45f963e0e39ce4f150640efc6c86f66f3b
Size

10KB
Sample

221019-2sre3abhdq
MD5

835f8debb1e4d1fba03be0ddb31cffd0
SHA1

9029f4d6d7fa92b10d60ceb0fd4a1287f9689111
SHA256

572c9144d98db97ad2a1165b08c74c45f963e0e39ce4f150640efc6c86f66f3b
SHA512

29387e6093a5cd24310eea617e9b68c3260598a35a4c2b252b2b72c75fb9db9ba1d8e92daa96f4fdd7d31af3f3a7b41d1f25783b47d7cc24c56d7c8a7f3aeb5c
SSDEEP

192:edUHQASj9lBNZVpHgkf8Nd5aNfsaqMK9/1FNE/7kqiobIXBk0kXNYcJkluzXpLx:C1T/ZV5fm6EMK9/1FN3usxQXNYcJkluj

Score

7^/10

Malware Config

Targets

- Target
  
  102350@__Script.exe
- Size
  
  81KB
- MD5
  
  87faa97e061c97515f56b09106720254
- SHA1
  
  ba337b4b6c0781a5cea973d0f784b1ee569cef0e
- SHA256
  
  4b49d97754ca905c6aef1b8f1e538f8d724e6e0ca5a4f902f1169afe2ac296a1
- SHA512
  
  0ae2e633980b868fb14e38afdfefc7a59755e3ff786e644b3a274d012086744affb27e57c9003905bfc6e5dbf62df02e7fc4dc44e7ad4d4e607bd2281d1e28d8
- SSDEEP
  
  384:NUgx+U/y0Bi1zK0xVJxeQYJvlY5jJUJaJDEadI/K15:NUjK/lYj+wH15
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2