f84008f56ab1eba5131e0bd568570dcd5e9894c086a1632afd182528737f1aca | Triage

Sharing

General

Target

f84008f56ab1eba5131e0bd568570dcd5e9894c086a1632afd182528737f1aca
Size

72KB
Sample

221020-l2x17sgge8
MD5

965c457f50f32c54e208cdf1e1cbe98e
SHA1

38bd8b4fb7721d4489cddaa7b3140b934694440b
SHA256

f84008f56ab1eba5131e0bd568570dcd5e9894c086a1632afd182528737f1aca
SHA512

3e4c5b616d4abdf6981597cbd3e219dd1dbe26aa2dd4ed32d54125ec53fb09dd93fafe5e440c04ebc68403f77c8fcca8a11122a6be7d4300da6ccefda5735029
SSDEEP

768:9zv1iSsKkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKVE3os:pB8irEJycA8Dy9Suo6zCL

Score

7^/10

Malware Config

Targets

- Target
  
  f84008f56ab1eba5131e0bd568570dcd5e9894c086a1632afd182528737f1aca
- Size
  
  72KB
- MD5
  
  965c457f50f32c54e208cdf1e1cbe98e
- SHA1
  
  38bd8b4fb7721d4489cddaa7b3140b934694440b
- SHA256
  
  f84008f56ab1eba5131e0bd568570dcd5e9894c086a1632afd182528737f1aca
- SHA512
  
  3e4c5b616d4abdf6981597cbd3e219dd1dbe26aa2dd4ed32d54125ec53fb09dd93fafe5e440c04ebc68403f77c8fcca8a11122a6be7d4300da6ccefda5735029
- SSDEEP
  
  768:9zv1iSsKkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKVE3os:pB8irEJycA8Dy9Suo6zCL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2