ce84ff7f9775ab56f1b6e07dae7573ef248f42acfe1a34e17015297179622856 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce84ff7f9775ab56f1b6e07dae7573ef248f42acfe1a34e17015297179622856
Size

72KB
Sample

221029-3zewaacec6
MD5

93f074aabb22e7601c51795fbb3122b2
SHA1

c53146cd0b5b0c0ff2fc5bebaf940557f732b192
SHA256

ce84ff7f9775ab56f1b6e07dae7573ef248f42acfe1a34e17015297179622856
SHA512

30617d900e0b2fa5aa056710bc3909283f5773c740ec26daa57a90e41d1ca646e3b2acc7b897ba4dfd4f7f6d8ac3bcda1a039c51deeb2231dc31f6d5eca4de11
SSDEEP

768:9MD1iS1KkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKV2Elm:mNtirEJycA8Dy9Suo6zCVS

Score

7^/10

Malware Config

Targets

- Target
  
  ce84ff7f9775ab56f1b6e07dae7573ef248f42acfe1a34e17015297179622856
- Size
  
  72KB
- MD5
  
  93f074aabb22e7601c51795fbb3122b2
- SHA1
  
  c53146cd0b5b0c0ff2fc5bebaf940557f732b192
- SHA256
  
  ce84ff7f9775ab56f1b6e07dae7573ef248f42acfe1a34e17015297179622856
- SHA512
  
  30617d900e0b2fa5aa056710bc3909283f5773c740ec26daa57a90e41d1ca646e3b2acc7b897ba4dfd4f7f6d8ac3bcda1a039c51deeb2231dc31f6d5eca4de11
- SSDEEP
  
  768:9MD1iS1KkOCfJb4kHrgrTi6yBJJyNKJCviXDyiwSuo6zCNKV2Elm:mNtirEJycA8Dy9Suo6zCVS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2