Overview

overview

7

Static

static

document_E...22.iso

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    document_E506_Nov#22.iso

  • Size

    1.2MB

  • Sample

    221123-j94slsgg25

  • MD5

    1324c3f5b19897f15a4d26a18a125ebe

  • SHA1

    78391b0832d0f5f4aca0598086fee39d0c5dadd5

  • SHA256

    1227929a4962989bd6676abba8f974bdf35576c98973309f4a30789a9d9be796

  • SHA512

    cbcd0489cd913ff462539780bf4a9715ce18403e50c071c3b32d090c42e0723e5a21470cdad837b16bf92a86447577dd03b376d79be3c0db6ac18120b270ceb1

  • SSDEEP

    24576:2t68Z3shoA9qB8DvUAZkl9iIDIQIFaO1YnknF6:f8vmqB8DUAZklKYnknF6

Score
7/10

Malware Config

Targets

    • Target

      document_E506_Nov#22.iso

    • Size

      1.2MB

    • MD5

      1324c3f5b19897f15a4d26a18a125ebe

    • SHA1

      78391b0832d0f5f4aca0598086fee39d0c5dadd5

    • SHA256

      1227929a4962989bd6676abba8f974bdf35576c98973309f4a30789a9d9be796

    • SHA512

      cbcd0489cd913ff462539780bf4a9715ce18403e50c071c3b32d090c42e0723e5a21470cdad837b16bf92a86447577dd03b376d79be3c0db6ac18120b270ceb1

    • SSDEEP

      24576:2t68Z3shoA9qB8DvUAZkl9iIDIQIFaO1YnknF6:f8vmqB8DUAZklKYnknF6

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

3
T1082

Peripheral Device Discovery

1
T1120

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks