51e43a15aed8bcedacdfda384dc374ea7c0e8e1580d914346369dcf47c048750 | Triage

Sharing

General

Target

51e43a15aed8bcedacdfda384dc374ea7c0e8e1580d914346369dcf47c048750
Size

85KB
Sample

221106-qpclysfdfl
MD5

0db621d297338085e3f3b872d6b4eed6
SHA1

89e2c1493e50f771d324ba49ea43024b5bf28e34
SHA256

51e43a15aed8bcedacdfda384dc374ea7c0e8e1580d914346369dcf47c048750
SHA512

ed35c5e06a6c72f48b167891e877beb14e1c29064438e36335efd66d6779c433be08d001770546ef4434d631a083386702005974d70ada0e1622dcc5ee9040f6
SSDEEP

1536:n3LSNZSOyFqlewor4ZXkl3CkSRpliHyPm:3uty8fVxIyLiS

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  51e43a15aed8bcedacdfda384dc374ea7c0e8e1580d914346369dcf47c048750
- Size
  
  85KB
- MD5
  
  0db621d297338085e3f3b872d6b4eed6
- SHA1
  
  89e2c1493e50f771d324ba49ea43024b5bf28e34
- SHA256
  
  51e43a15aed8bcedacdfda384dc374ea7c0e8e1580d914346369dcf47c048750
- SHA512
  
  ed35c5e06a6c72f48b167891e877beb14e1c29064438e36335efd66d6779c433be08d001770546ef4434d631a083386702005974d70ada0e1622dcc5ee9040f6
- SSDEEP
  
  1536:n3LSNZSOyFqlewor4ZXkl3CkSRpliHyPm:3uty8fVxIyLiS
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2