98e02f038b75ad10b676ba226b575be134b241b123aa6422e91db958f9286f21 | Triage

Sharing

General

Target

98e02f038b75ad10b676ba226b575be134b241b123aa6422e91db958f9286f21
Size

36KB
Sample

221029-17r5gahea6
MD5

5f83e1be182e55513a237df358665823
SHA1

430f06a326276bc203e6ffe2afdce1df5a6a93ba
SHA256

98e02f038b75ad10b676ba226b575be134b241b123aa6422e91db958f9286f21
SHA512

dac4ec77776b062120792007a4037ef5cca9184f825c147c308ec6f2fd6d825f5fdde0a9316b49a24163d24ce15b53c1d4fa4214989dba26af1159cb5f9422a2
SSDEEP

384:4ngz/RdiJscccVWSRuLBN9wSrli/xQfbfz1pvwMM58zU:4mziJs2uLhwSrluKT711jMW4

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  98e02f038b75ad10b676ba226b575be134b241b123aa6422e91db958f9286f21
- Size
  
  36KB
- MD5
  
  5f83e1be182e55513a237df358665823
- SHA1
  
  430f06a326276bc203e6ffe2afdce1df5a6a93ba
- SHA256
  
  98e02f038b75ad10b676ba226b575be134b241b123aa6422e91db958f9286f21
- SHA512
  
  dac4ec77776b062120792007a4037ef5cca9184f825c147c308ec6f2fd6d825f5fdde0a9316b49a24163d24ce15b53c1d4fa4214989dba26af1159cb5f9422a2
- SSDEEP
  
  384:4ngz/RdiJscccVWSRuLBN9wSrli/xQfbfz1pvwMM58zU:4mziJs2uLhwSrluKT711jMW4
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2