30273689e766fa5efbd6bbdb6b814d30f07aa1ed5f164b278fa6944ca7d801db | Triage

Sharing

General

Target

30273689e766fa5efbd6bbdb6b814d30f07aa1ed5f164b278fa6944ca7d801db
Size

128KB
Sample

221029-tfcr5sdcd6
MD5

5dac58d95541824fc26d1e8b682c0d40
SHA1

65bfa39292efac81f6ceb214cc11440b0ddb13bf
SHA256

30273689e766fa5efbd6bbdb6b814d30f07aa1ed5f164b278fa6944ca7d801db
SHA512

9ae90b27ab0bfd4e26a62151beb6a14e9c6c9c09788eb56892b4996c8ce708a1cf879bde39d4ef5b776a3ae045c10a1f79b00d62e3fa62f1ee3e9c967f4a0408
SSDEEP

1536:w4R2peP0hjtG00so4pzEACaRBLAoVH1lOQYJ6iibQRVNNhK5a5aeSNg2w4DewJA7:HRj0ZINso4pzwsHh1hbaEdEd

Score

7^/10

Malware Config

Targets

- Target
  
  30273689e766fa5efbd6bbdb6b814d30f07aa1ed5f164b278fa6944ca7d801db
- Size
  
  128KB
- MD5
  
  5dac58d95541824fc26d1e8b682c0d40
- SHA1
  
  65bfa39292efac81f6ceb214cc11440b0ddb13bf
- SHA256
  
  30273689e766fa5efbd6bbdb6b814d30f07aa1ed5f164b278fa6944ca7d801db
- SHA512
  
  9ae90b27ab0bfd4e26a62151beb6a14e9c6c9c09788eb56892b4996c8ce708a1cf879bde39d4ef5b776a3ae045c10a1f79b00d62e3fa62f1ee3e9c967f4a0408
- SSDEEP
  
  1536:w4R2peP0hjtG00so4pzEACaRBLAoVH1lOQYJ6iibQRVNNhK5a5aeSNg2w4DewJA7:HRj0ZINso4pzwsHh1hbaEdEd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2