581a77a0f1907dcb1f6fb73373c05a95b9a5dd9a3b34ef7861c63d72b4593ad7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

581a77a0f1907dcb1f6fb73373c05a95b9a5dd9a3b34ef7861c63d72b4593ad7
Size

116KB
Sample

221030-acbacsddbr
MD5

a2f313b5e9baf207ea0a5f8446212ac0
SHA1

1f4c32dcd3f9bf4c41b3f3e2b496821007dfc3ca
SHA256

581a77a0f1907dcb1f6fb73373c05a95b9a5dd9a3b34ef7861c63d72b4593ad7
SHA512

0a8e1d9084c496bd94be8fbca4ee83bd8f9fabb33a401ee06c25390c97294db7618f71c5700b7d466b06cfdc8c6f5573334d68122d807b67b183eafa7edb9aa1
SSDEEP

1536:cLK6xGtf1mtjyLeaqeXt5Qvc0rz/5vajQJZCG/KJkXqyW02MAh:r/4GLeaqeKrb5vajQJZCIqlt

Score

7^/10

Malware Config

Targets

- Target
  
  581a77a0f1907dcb1f6fb73373c05a95b9a5dd9a3b34ef7861c63d72b4593ad7
- Size
  
  116KB
- MD5
  
  a2f313b5e9baf207ea0a5f8446212ac0
- SHA1
  
  1f4c32dcd3f9bf4c41b3f3e2b496821007dfc3ca
- SHA256
  
  581a77a0f1907dcb1f6fb73373c05a95b9a5dd9a3b34ef7861c63d72b4593ad7
- SHA512
  
  0a8e1d9084c496bd94be8fbca4ee83bd8f9fabb33a401ee06c25390c97294db7618f71c5700b7d466b06cfdc8c6f5573334d68122d807b67b183eafa7edb9aa1
- SSDEEP
  
  1536:cLK6xGtf1mtjyLeaqeXt5Qvc0rz/5vajQJZCG/KJkXqyW02MAh:r/4GLeaqeKrb5vajQJZCIqlt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2