24a3d56aa89fcf2f102af046d8dddd95e817e2ea2fbae1336bd8258968fd28ae | Triage

Sharing

General

Target

24a3d56aa89fcf2f102af046d8dddd95e817e2ea2fbae1336bd8258968fd28ae
Size

136KB
Sample

221020-b5ad7shbe5
MD5

804217177c38c8f218cb470832f05790
SHA1

6c1976b7c29029c05c9989373f3796096bfdfa18
SHA256

24a3d56aa89fcf2f102af046d8dddd95e817e2ea2fbae1336bd8258968fd28ae
SHA512

a28bf653b7c339cd73b164eaa84b69e0df10331735d75ffe1101747912469ff3b638ed39e124caaf970c7f0bf12b28706b7dd85b7ffe13405b2ed0b0aec81d10
SSDEEP

3072:tS2mzOS92gmdjac9S+dPFIpB3UASnsu+/5oIIel:tS2+Mac4+dNIDRSsv/5n

Score

7^/10

Malware Config

Targets

- Target
  
  24a3d56aa89fcf2f102af046d8dddd95e817e2ea2fbae1336bd8258968fd28ae
- Size
  
  136KB
- MD5
  
  804217177c38c8f218cb470832f05790
- SHA1
  
  6c1976b7c29029c05c9989373f3796096bfdfa18
- SHA256
  
  24a3d56aa89fcf2f102af046d8dddd95e817e2ea2fbae1336bd8258968fd28ae
- SHA512
  
  a28bf653b7c339cd73b164eaa84b69e0df10331735d75ffe1101747912469ff3b638ed39e124caaf970c7f0bf12b28706b7dd85b7ffe13405b2ed0b0aec81d10
- SSDEEP
  
  3072:tS2mzOS92gmdjac9S+dPFIpB3UASnsu+/5oIIel:tS2+Mac4+dNIDRSsv/5n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2