39545bcb54f71c02e06e525326d590e0545ff03002460ab94690650eeabde6e2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

39545bcb54f71c02e06e525326d590e0545ff03002460ab94690650eeabde6e2
Size

20KB
Sample

221107-zkeeesbahj
MD5

03da1b3ba1bb0fd921ef5ad405af24b6
SHA1

e8223499a4cb21b6c1bf4024d80588a9de9c68d8
SHA256

39545bcb54f71c02e06e525326d590e0545ff03002460ab94690650eeabde6e2
SHA512

2399a4edc161ed2abb683f3f12b7602052863b3ab195f3a08d13c08448e51469ab792e38ff7e55c605673a39f013477d75368b7fb942d6aca43729d8a7e041dd
SSDEEP

384:H8diWavfZsDiM3PfsBhnRGjLbjnsJziyx6JnOur1:H8dkvf41ETeyKOu5

Score

7^/10

Malware Config

Targets

- Target
  
  39545bcb54f71c02e06e525326d590e0545ff03002460ab94690650eeabde6e2
- Size
  
  20KB
- MD5
  
  03da1b3ba1bb0fd921ef5ad405af24b6
- SHA1
  
  e8223499a4cb21b6c1bf4024d80588a9de9c68d8
- SHA256
  
  39545bcb54f71c02e06e525326d590e0545ff03002460ab94690650eeabde6e2
- SHA512
  
  2399a4edc161ed2abb683f3f12b7602052863b3ab195f3a08d13c08448e51469ab792e38ff7e55c605673a39f013477d75368b7fb942d6aca43729d8a7e041dd
- SSDEEP
  
  384:H8diWavfZsDiM3PfsBhnRGjLbjnsJziyx6JnOur1:H8dkvf41ETeyKOu5
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2