d606783be1577a19561f54adb42d8815d725e9b8e475717e84a9fd97fe917e5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d606783be1577a19561f54adb42d8815d725e9b8e475717e84a9fd97fe917e5c
Size

72KB
Sample

221029-3y3wqaceb7
MD5

93977fccc70a7de91c71fad063e07f82
SHA1

b8a1bc332122859d2cf39dbf978a59573ba4bda4
SHA256

d606783be1577a19561f54adb42d8815d725e9b8e475717e84a9fd97fe917e5c
SHA512

70182d0b9721ebd333bb49adcb607e3c8755aa50588dc1323960ea4133504d90ab3271ccbf41725acf211ac6237a9f719323490f215a4d4c6fc6b8e165e27c52
SSDEEP

1536:+08UYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6EBb:+SYxgU6kl+0sTSVYw/4/xEKb6JVoNHIw

Score

7^/10

Malware Config

Targets

- Target
  
  d606783be1577a19561f54adb42d8815d725e9b8e475717e84a9fd97fe917e5c
- Size
  
  72KB
- MD5
  
  93977fccc70a7de91c71fad063e07f82
- SHA1
  
  b8a1bc332122859d2cf39dbf978a59573ba4bda4
- SHA256
  
  d606783be1577a19561f54adb42d8815d725e9b8e475717e84a9fd97fe917e5c
- SHA512
  
  70182d0b9721ebd333bb49adcb607e3c8755aa50588dc1323960ea4133504d90ab3271ccbf41725acf211ac6237a9f719323490f215a4d4c6fc6b8e165e27c52
- SSDEEP
  
  1536:+08UYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6EBb:+SYxgU6kl+0sTSVYw/4/xEKb6JVoNHIw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2