6ff96e56023abdb5d8d9df02df3fc880b49c4cd51740fba625cfcd525cfd4d78 | Triage

Sharing

General

Target

6ff96e56023abdb5d8d9df02df3fc880b49c4cd51740fba625cfcd525cfd4d78
Size

931KB
Sample

221029-gxn6aadga6
MD5

509655aadcf2aa035121ee3f53012440
SHA1

8e53f67572b808ef6fdba5903aae5ac0858d75b4
SHA256

6ff96e56023abdb5d8d9df02df3fc880b49c4cd51740fba625cfcd525cfd4d78
SHA512

338efd78c3c0443fdd0455afc29232242d78c4b109a74dbca70d59423664340be4da0912516481320d22788070b0e6b7d2ade2dce6dbd5087ba7e5f1a2ef7139
SSDEEP

12288:t2+sJjIg5YwPDgBg1LfqgrsIzxFXD7txpvGGsLK3yRDRhWv9iWLcjXP8t8q:oNT5ZFXD7fpeyyRRhy9lLcTFq

Score

7^/10

Malware Config

Targets

- Target
  
  6ff96e56023abdb5d8d9df02df3fc880b49c4cd51740fba625cfcd525cfd4d78
- Size
  
  931KB
- MD5
  
  509655aadcf2aa035121ee3f53012440
- SHA1
  
  8e53f67572b808ef6fdba5903aae5ac0858d75b4
- SHA256
  
  6ff96e56023abdb5d8d9df02df3fc880b49c4cd51740fba625cfcd525cfd4d78
- SHA512
  
  338efd78c3c0443fdd0455afc29232242d78c4b109a74dbca70d59423664340be4da0912516481320d22788070b0e6b7d2ade2dce6dbd5087ba7e5f1a2ef7139
- SSDEEP
  
  12288:t2+sJjIg5YwPDgBg1LfqgrsIzxFXD7txpvGGsLK3yRDRhWv9iWLcjXP8t8q:oNT5ZFXD7fpeyyRRhy9lLcTFq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2