51619e20ed60153054942a7c849c64e14c3afb13d03677776ab9196a995fda6c | Triage

Sharing

General

Target

51619e20ed60153054942a7c849c64e14c3afb13d03677776ab9196a995fda6c
Size

68KB
Sample

221019-qtdptaadfl
MD5

a0a6608540fab628a58e4fbd5bd8fb60
SHA1

6d5f98cb66ba381634ee38e004093123b2c15c1d
SHA256

51619e20ed60153054942a7c849c64e14c3afb13d03677776ab9196a995fda6c
SHA512

9bcb904b5fcdbf2d6f9c47b7685a388a9f9b10d6568a75fc9c2685ff4080c05cfcffee0e712d901c86867df65b46f9bc31f6017a5ee4968b4489cd1373ab0504
SSDEEP

1536:LU0nL0QAFuFDmLpnMT2CBrnTndnXnxC1XWXBXAX+C:HLaY9apMBBJ

Score

7^/10

Malware Config

Targets

- Target
  
  51619e20ed60153054942a7c849c64e14c3afb13d03677776ab9196a995fda6c
- Size
  
  68KB
- MD5
  
  a0a6608540fab628a58e4fbd5bd8fb60
- SHA1
  
  6d5f98cb66ba381634ee38e004093123b2c15c1d
- SHA256
  
  51619e20ed60153054942a7c849c64e14c3afb13d03677776ab9196a995fda6c
- SHA512
  
  9bcb904b5fcdbf2d6f9c47b7685a388a9f9b10d6568a75fc9c2685ff4080c05cfcffee0e712d901c86867df65b46f9bc31f6017a5ee4968b4489cd1373ab0504
- SSDEEP
  
  1536:LU0nL0QAFuFDmLpnMT2CBrnTndnXnxC1XWXBXAX+C:HLaY9apMBBJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2