459d595d0b97bfc6a27cc889fa6467ce87a929640838e37336079cba5a04af47 | Triage

Sharing

General

Target

459d595d0b97bfc6a27cc889fa6467ce87a929640838e37336079cba5a04af47
Size

25KB
Sample

221121-sq294sfc22
MD5

363d53f51b8855c05eb1894ac23eeb92
SHA1

e1c4670206dffb99a31e591052b62e8bb162a6dd
SHA256

459d595d0b97bfc6a27cc889fa6467ce87a929640838e37336079cba5a04af47
SHA512

ce0f4004c7d7343bd0a2ee5447bbf9072d8f738493a1e3ca5c36bc96665537dfc092430c7aa769e343ad290007c1fc885e0a81e7a320cdb5bffe16fab5a5b640
SSDEEP

384:M9m3qNSq8vMukzNPJ5W91W9zEWPO2gIT6BSSK3RH:M8QSPktJ5WLaT6BS

Score

7^/10

Malware Config

Targets

- Target
  
  459d595d0b97bfc6a27cc889fa6467ce87a929640838e37336079cba5a04af47
- Size
  
  25KB
- MD5
  
  363d53f51b8855c05eb1894ac23eeb92
- SHA1
  
  e1c4670206dffb99a31e591052b62e8bb162a6dd
- SHA256
  
  459d595d0b97bfc6a27cc889fa6467ce87a929640838e37336079cba5a04af47
- SHA512
  
  ce0f4004c7d7343bd0a2ee5447bbf9072d8f738493a1e3ca5c36bc96665537dfc092430c7aa769e343ad290007c1fc885e0a81e7a320cdb5bffe16fab5a5b640
- SSDEEP
  
  384:M9m3qNSq8vMukzNPJ5W91W9zEWPO2gIT6BSSK3RH:M8QSPktJ5WLaT6BS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2