a5ed07684ce215b9cf1481c7088f401faa251fdd2c9422dc854279f3b8853a14 | Triage

Sharing

General

Target

a5ed07684ce215b9cf1481c7088f401faa251fdd2c9422dc854279f3b8853a14
Size

64KB
Sample

221021-a4c82addem
MD5

5b7675d3fa61654610c2275a8d4b0580
SHA1

e6a4d836b517b8677f61b6f2d106022d5b97ae97
SHA256

a5ed07684ce215b9cf1481c7088f401faa251fdd2c9422dc854279f3b8853a14
SHA512

708f3b36d1ad5369001d0c15eda584c4d4dd3268624617e12eb6a2c477844fd86a9efb76aa8181d716371d11c70e7ca778ebea0d60b2176164cdac3c0899522a
SSDEEP

1536:9SE/8FZkJ2xord29nSe+L6ZtTqI1xt8RddkI5:97kDkJ2+dKSBCt71xt8Rdd

Score

7^/10

Malware Config

Targets

- Target
  
  a5ed07684ce215b9cf1481c7088f401faa251fdd2c9422dc854279f3b8853a14
- Size
  
  64KB
- MD5
  
  5b7675d3fa61654610c2275a8d4b0580
- SHA1
  
  e6a4d836b517b8677f61b6f2d106022d5b97ae97
- SHA256
  
  a5ed07684ce215b9cf1481c7088f401faa251fdd2c9422dc854279f3b8853a14
- SHA512
  
  708f3b36d1ad5369001d0c15eda584c4d4dd3268624617e12eb6a2c477844fd86a9efb76aa8181d716371d11c70e7ca778ebea0d60b2176164cdac3c0899522a
- SSDEEP
  
  1536:9SE/8FZkJ2xord29nSe+L6ZtTqI1xt8RddkI5:97kDkJ2+dKSBCt71xt8Rdd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2