1f17ea53c366c2719d04a19d0590613b1c64017ece9d9cb0eec002f54d56903a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f17ea53c366c2719d04a19d0590613b1c64017ece9d9cb0eec002f54d56903a
Size

64KB
Sample

221121-r8smyshh3x
MD5

1333ba20432aaa4c756a6dd7c1f54de6
SHA1

bf472ea186dd189b99b8ee32a086ea47254e682f
SHA256

1f17ea53c366c2719d04a19d0590613b1c64017ece9d9cb0eec002f54d56903a
SHA512

3e7459274f90bdb72f656e20ac47a271600a19d2520f4bdef072656198fad47d64e373c5eff8d15fffce4bc813fa4cf39ad758cb219ed8593bc61eb3bda09da0
SSDEEP

1536:t4dgnOIZbIl4GU5iaiY9i0byQ1CZi2eYW+PnsSaT:t8PlN6i0gC+vQT

Score

7^/10

Malware Config

Targets

- Target
  
  1f17ea53c366c2719d04a19d0590613b1c64017ece9d9cb0eec002f54d56903a
- Size
  
  64KB
- MD5
  
  1333ba20432aaa4c756a6dd7c1f54de6
- SHA1
  
  bf472ea186dd189b99b8ee32a086ea47254e682f
- SHA256
  
  1f17ea53c366c2719d04a19d0590613b1c64017ece9d9cb0eec002f54d56903a
- SHA512
  
  3e7459274f90bdb72f656e20ac47a271600a19d2520f4bdef072656198fad47d64e373c5eff8d15fffce4bc813fa4cf39ad758cb219ed8593bc61eb3bda09da0
- SSDEEP
  
  1536:t4dgnOIZbIl4GU5iaiY9i0byQ1CZi2eYW+PnsSaT:t8PlN6i0gC+vQT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2