ab18d28798287a2917d66fddbfed2892d14a292938b220f962ec838bffb70c38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ab18d28798287a2917d66fddbfed2892d14a292938b220f962ec838bffb70c38
Size

191KB
Sample

221107-p7k6dageh4
MD5

80fdee5cc09c6151b2ae62cb2d50c8da
SHA1

316fabecbb9337384079b3a2c48b27c630d7487b
SHA256

ab18d28798287a2917d66fddbfed2892d14a292938b220f962ec838bffb70c38
SHA512

0cbfd816ebe5e69473629228b4daa410bed959d66ad7bc0fca28d7f0afc3600651e1bbfcb29cdb4880966cacd477d92f64f98ebbb29b6ed61356a0d310723cc6
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dy:HAVySV1eY4k437d+4wkTHdS2K

Score

7^/10

Malware Config

Targets

- Target
  
  ab18d28798287a2917d66fddbfed2892d14a292938b220f962ec838bffb70c38
- Size
  
  191KB
- MD5
  
  80fdee5cc09c6151b2ae62cb2d50c8da
- SHA1
  
  316fabecbb9337384079b3a2c48b27c630d7487b
- SHA256
  
  ab18d28798287a2917d66fddbfed2892d14a292938b220f962ec838bffb70c38
- SHA512
  
  0cbfd816ebe5e69473629228b4daa410bed959d66ad7bc0fca28d7f0afc3600651e1bbfcb29cdb4880966cacd477d92f64f98ebbb29b6ed61356a0d310723cc6
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dy:HAVySV1eY4k437d+4wkTHdS2K
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2