aa361c7d75b9915dc9eb617b45d5d54419562d690e85d94be75de87c590d50b8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa361c7d75b9915dc9eb617b45d5d54419562d690e85d94be75de87c590d50b8
Size

116KB
Sample

221107-xwbfssfgel
MD5

0b9470ea18ede5450d95255fb856dd17
SHA1

70a946c8b7490c28f0d338197e5cd108cbf7ec40
SHA256

aa361c7d75b9915dc9eb617b45d5d54419562d690e85d94be75de87c590d50b8
SHA512

c6be4e7650cf5e0b7b7b82ef3d73441d759adf820d04bc6430543b6f6c44014309ce28de1cd282d7024fdbaecd9ef3cef8db32452f1443970af5d5e8da508e13
SSDEEP

1536:e8MFN7qNlfNe+zLipk+JOmuvBGVa/TYareDRRdauTZ8yEnm+Ad4gricMsW:Cb7q71LzLikOupGVgeDsuTZAo4lsW

Score

7^/10

Malware Config

Targets

- Target
  
  aa361c7d75b9915dc9eb617b45d5d54419562d690e85d94be75de87c590d50b8
- Size
  
  116KB
- MD5
  
  0b9470ea18ede5450d95255fb856dd17
- SHA1
  
  70a946c8b7490c28f0d338197e5cd108cbf7ec40
- SHA256
  
  aa361c7d75b9915dc9eb617b45d5d54419562d690e85d94be75de87c590d50b8
- SHA512
  
  c6be4e7650cf5e0b7b7b82ef3d73441d759adf820d04bc6430543b6f6c44014309ce28de1cd282d7024fdbaecd9ef3cef8db32452f1443970af5d5e8da508e13
- SSDEEP
  
  1536:e8MFN7qNlfNe+zLipk+JOmuvBGVa/TYareDRRdauTZ8yEnm+Ad4gricMsW:Cb7q71LzLikOupGVgeDsuTZAo4lsW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2