ee35c2c9d4cd136a8e883e44a47c04f5727b0489f4b539dfec96c4684343d464 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ee35c2c9d4cd136a8e883e44a47c04f5727b0489f4b539dfec96c4684343d464
Size

64KB
Sample

221030-ychansghgj
MD5

91afdb80d1555070f680a1aa8dc200e0
SHA1

36eeb20639207b0c003b70cdcd3c30038b43e0eb
SHA256

ee35c2c9d4cd136a8e883e44a47c04f5727b0489f4b539dfec96c4684343d464
SHA512

c5be86b6bd51b5a154833eacb95f854a2ce116327d5e3dcc175809e879ab20233eacd39bc2f2faf8fd73532cf31c471c1380b6166d3d57e75032ca1e12330312
SSDEEP

768:rSfmA9h55Ufo0bIGfitZ0DGsmTIhbez5zeNSWN112N1UXiylDpPO:rshIvy/eu1UXbVW

Score

7^/10

Malware Config

Targets

- Target
  
  ee35c2c9d4cd136a8e883e44a47c04f5727b0489f4b539dfec96c4684343d464
- Size
  
  64KB
- MD5
  
  91afdb80d1555070f680a1aa8dc200e0
- SHA1
  
  36eeb20639207b0c003b70cdcd3c30038b43e0eb
- SHA256
  
  ee35c2c9d4cd136a8e883e44a47c04f5727b0489f4b539dfec96c4684343d464
- SHA512
  
  c5be86b6bd51b5a154833eacb95f854a2ce116327d5e3dcc175809e879ab20233eacd39bc2f2faf8fd73532cf31c471c1380b6166d3d57e75032ca1e12330312
- SSDEEP
  
  768:rSfmA9h55Ufo0bIGfitZ0DGsmTIhbez5zeNSWN112N1UXiylDpPO:rshIvy/eu1UXbVW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2