806efc62a82076a2ea8275180668a084a2b85104d4f1c5b31911a40795376cff | Triage

Sharing

General

Target

806efc62a82076a2ea8275180668a084a2b85104d4f1c5b31911a40795376cff
Size

84KB
Sample

221030-yhd57shbhq
MD5

a105bbe3c19309fa1aa356eb5744ee80
SHA1

c1f1c6ce7dbcf30ef10742b07148725c45664c0e
SHA256

806efc62a82076a2ea8275180668a084a2b85104d4f1c5b31911a40795376cff
SHA512

ef03adf1df473703b3fca1ad0ff36b75ddd0165067b2fff4ec9db0e36a838a52d69de8d011f8ca951ef915b1907d33bd3fd949fc314598c489cdf4217cf69c81
SSDEEP

768:Vzbrwr+UcxsC6MGjTP7ri8ZFr8JoH07NECVEqMD/Zcjd1Mq2jPQoaFc:Vrwr+Ucxh6JPHi8Zh8SHE/Acj4NPQG

Score

7^/10

Malware Config

Targets

- Target
  
  806efc62a82076a2ea8275180668a084a2b85104d4f1c5b31911a40795376cff
- Size
  
  84KB
- MD5
  
  a105bbe3c19309fa1aa356eb5744ee80
- SHA1
  
  c1f1c6ce7dbcf30ef10742b07148725c45664c0e
- SHA256
  
  806efc62a82076a2ea8275180668a084a2b85104d4f1c5b31911a40795376cff
- SHA512
  
  ef03adf1df473703b3fca1ad0ff36b75ddd0165067b2fff4ec9db0e36a838a52d69de8d011f8ca951ef915b1907d33bd3fd949fc314598c489cdf4217cf69c81
- SSDEEP
  
  768:Vzbrwr+UcxsC6MGjTP7ri8ZFr8JoH07NECVEqMD/Zcjd1Mq2jPQoaFc:Vrwr+Ucxh6JPHi8Zh8SHE/Acj4NPQG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2