e8e8ed8db853f3357f1cf0af08afb9573ce147f3884e6b1d138175f586819c8c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8e8ed8db853f3357f1cf0af08afb9573ce147f3884e6b1d138175f586819c8c
Size

570KB
Sample

221121-nvanface5v
MD5

107978e7b1c303951b264115e0b92387
SHA1

3fa5fe9cc0f9c6b1647f4c3c112eac4590d8ca9c
SHA256

e8e8ed8db853f3357f1cf0af08afb9573ce147f3884e6b1d138175f586819c8c
SHA512

fb9d98b40d3acf3b66d94f6fa5364dec528c1d4bda8a0150079b805e931f61ec3f48001a99b2eef1f730297179a05558b844b28c7438da55511149ad9f9f2828
SSDEEP

12288:FTrkwj4Gq2Oo40rtHmfo4X5atafOPZULEpxnNCO8qX7Kf:tkwj4GvzPpE2+gpxnNCOTu

Score

7^/10

Malware Config

Targets

- Target
  
  e8e8ed8db853f3357f1cf0af08afb9573ce147f3884e6b1d138175f586819c8c
- Size
  
  570KB
- MD5
  
  107978e7b1c303951b264115e0b92387
- SHA1
  
  3fa5fe9cc0f9c6b1647f4c3c112eac4590d8ca9c
- SHA256
  
  e8e8ed8db853f3357f1cf0af08afb9573ce147f3884e6b1d138175f586819c8c
- SHA512
  
  fb9d98b40d3acf3b66d94f6fa5364dec528c1d4bda8a0150079b805e931f61ec3f48001a99b2eef1f730297179a05558b844b28c7438da55511149ad9f9f2828
- SSDEEP
  
  12288:FTrkwj4Gq2Oo40rtHmfo4X5atafOPZULEpxnNCO8qX7Kf:tkwj4GvzPpE2+gpxnNCOTu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2