c9587ecdf277d3ed05c496df3464ad9cbbf96856090972e73839a8520f3c7588 | Triage

Sharing

General

Target

c9587ecdf277d3ed05c496df3464ad9cbbf96856090972e73839a8520f3c7588
Size

116KB
Sample

221029-th18hsddg2
MD5

84fdb7036ffea0127c63422a4ffb7520
SHA1

1ae51d1b7c29db2f5d8d21ccc84d5ef19a75b538
SHA256

c9587ecdf277d3ed05c496df3464ad9cbbf96856090972e73839a8520f3c7588
SHA512

56748765e0eb00871eb33717d298793f8e79f931c0942802044096eba005a10b76c0f1f99db7f74ac0d762574b2289c35307f1a3fda060416e86adbd55eab418
SSDEEP

1536:kzGL/H6Vn11Usu5meXe5QvcPrulffUwJ1M4JSUb1kJ5v:P6VrUX5meIrulffUwJ1MJJ5

Score

7^/10

Malware Config

Targets

- Target
  
  c9587ecdf277d3ed05c496df3464ad9cbbf96856090972e73839a8520f3c7588
- Size
  
  116KB
- MD5
  
  84fdb7036ffea0127c63422a4ffb7520
- SHA1
  
  1ae51d1b7c29db2f5d8d21ccc84d5ef19a75b538
- SHA256
  
  c9587ecdf277d3ed05c496df3464ad9cbbf96856090972e73839a8520f3c7588
- SHA512
  
  56748765e0eb00871eb33717d298793f8e79f931c0942802044096eba005a10b76c0f1f99db7f74ac0d762574b2289c35307f1a3fda060416e86adbd55eab418
- SSDEEP
  
  1536:kzGL/H6Vn11Usu5meXe5QvcPrulffUwJ1M4JSUb1kJ5v:P6VrUX5meIrulffUwJ1MJJ5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2