784b39d8c99a152c80f5204b3703802057567f441fb58aaaaadd9ed3e628e74f | Triage

Sharing

General

Target

784b39d8c99a152c80f5204b3703802057567f441fb58aaaaadd9ed3e628e74f
Size

32KB
Sample

221030-xjfvrafeep
MD5

81b9dd4f7928488b0961580b86064bd0
SHA1

e76736d1a1b668872a8dc3239ee2c89d2e37f12c
SHA256

784b39d8c99a152c80f5204b3703802057567f441fb58aaaaadd9ed3e628e74f
SHA512

f00200a692044b5ac697420fbf4e72e5b09e52810baaf1f5a1c2a35f0d57682246f3c6996e707e7caac35dcb583dd8e5a41b4f9e0690d4afc3227dbed86e08db
SSDEEP

384:03dEZNHUX5OK5l6ZVUESCssOJvy6JB7Ep5qq+FnfjkTYYyqdCN+Or551:0NEZJ+5mUZCspqp5XojEYYyJ+s5H

Score

7^/10

Malware Config

Targets

- Target
  
  784b39d8c99a152c80f5204b3703802057567f441fb58aaaaadd9ed3e628e74f
- Size
  
  32KB
- MD5
  
  81b9dd4f7928488b0961580b86064bd0
- SHA1
  
  e76736d1a1b668872a8dc3239ee2c89d2e37f12c
- SHA256
  
  784b39d8c99a152c80f5204b3703802057567f441fb58aaaaadd9ed3e628e74f
- SHA512
  
  f00200a692044b5ac697420fbf4e72e5b09e52810baaf1f5a1c2a35f0d57682246f3c6996e707e7caac35dcb583dd8e5a41b4f9e0690d4afc3227dbed86e08db
- SSDEEP
  
  384:03dEZNHUX5OK5l6ZVUESCssOJvy6JB7Ep5qq+FnfjkTYYyqdCN+Or551:0NEZJ+5mUZCspqp5XojEYYyJ+s5H
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2