44bc48d0a610192edbaf3b710b55967fd2efa8a8d7199ed082d8d4cc57da6513 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

44bc48d0a610192edbaf3b710b55967fd2efa8a8d7199ed082d8d4cc57da6513
Size

736KB
Sample

221020-hxl7csagcj
MD5

818705c9a9b0be62eab525a5326d473b
SHA1

8bddf2e256a491cd2b4ec97eb6a91689ba524df3
SHA256

44bc48d0a610192edbaf3b710b55967fd2efa8a8d7199ed082d8d4cc57da6513
SHA512

c36b947c2494bf64f6fd112f8f0be67c248105729e59f70745ee991497388e124d9163fb1387f8309cd5dfe20ac8ab9ed65fb096a6a831d5d502a35fe7f0acdf
SSDEEP

12288:gpQFKc84EnyLz1emmZ+kEOc4dYchfL7pNWZQZrJe2WhmbH:gpQAcnLzY7EP6PhfLziQMhhmbH

Score

7^/10

Malware Config

Targets

- Target
  
  44bc48d0a610192edbaf3b710b55967fd2efa8a8d7199ed082d8d4cc57da6513
- Size
  
  736KB
- MD5
  
  818705c9a9b0be62eab525a5326d473b
- SHA1
  
  8bddf2e256a491cd2b4ec97eb6a91689ba524df3
- SHA256
  
  44bc48d0a610192edbaf3b710b55967fd2efa8a8d7199ed082d8d4cc57da6513
- SHA512
  
  c36b947c2494bf64f6fd112f8f0be67c248105729e59f70745ee991497388e124d9163fb1387f8309cd5dfe20ac8ab9ed65fb096a6a831d5d502a35fe7f0acdf
- SSDEEP
  
  12288:gpQFKc84EnyLz1emmZ+kEOc4dYchfL7pNWZQZrJe2WhmbH:gpQAcnLzY7EP6PhfLziQMhhmbH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2