f213ccb921138e8eafb11ed180f87a8af3d033a5655f840f6765208cb854c331 | Triage

Sharing

General

Target

4d6025ee5d91617215e56cbbc5e3e33dec8538c8fec99d163a964d9b0856cf92.zip
Size

188KB
Sample

221121-m2p62abc4w
MD5

b26697f85eb12678bcb9a93eabe4f0cf
SHA1

5924db7162799a2c0f674a1e3ef18a9c6968c01a
SHA256

f213ccb921138e8eafb11ed180f87a8af3d033a5655f840f6765208cb854c331
SHA512

76f195f8f126033ee6876b579199fb0d55be55a48400fedadc4d7b5d565ee1335dd056e8c6e6abe83883a3e1c75d39255a00a4d68dd2d0c92958f497e36cb042
SSDEEP

3072:DRcaa3M8ubARqMz8yQySA7r+bSRGb8r5fRL8YEURSD9k7oTuHZY:D23MpfC8RbGuo1RL75E9haHZY

Score

7^/10

Malware Config

Targets

- Target
  
  4d6025ee5d91617215e56cbbc5e3e33dec8538c8fec99d163a964d9b0856cf92.vbs
- Size
  
  363KB
- MD5
  
  35a1f0fc485df78a0d3aa73c68b9b1ff
- SHA1
  
  4241c17c904388f8a49e42c08a2895a1d74f08d9
- SHA256
  
  4d6025ee5d91617215e56cbbc5e3e33dec8538c8fec99d163a964d9b0856cf92
- SHA512
  
  65483208d4b93a86f47b837f4d4d68190ef9e6d53598c07e285f6a084ae9b8a814cbbf48b9ad16b7147a2997c310f40feb30aff6abb4a1cf282d9d1dbc909245
- SSDEEP
  
  6144:q/9985/Q8IkmH670UuPBDDpcPPl4Kcz6EmhRB4lAOnh6NxFftNW2a4L8tZLr6e3T:q/9985/Q8IkmH670UuPBDDpcPPl4Kcz7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2