da558228b47aa3d4dce53474e84fa5d6340cb3af1eee5d279e64685458f06ff2 | Triage

Sharing

General

Target

da558228b47aa3d4dce53474e84fa5d6340cb3af1eee5d279e64685458f06ff2
Size

2.4MB
Sample

221123-k9eddsea21
MD5

b526e3f6c71759955564a1df0196ed4e
SHA1

e754514fe13c7ffe7af2e662a6b852e8748a4388
SHA256

da558228b47aa3d4dce53474e84fa5d6340cb3af1eee5d279e64685458f06ff2
SHA512

164687a922185f9844d57d53bed9f4b1080bd93dd07dbc05f1fb48504ed3c60d40cc1e896aeec2b4db19223a364b0999560e13eec16047124d2c01dc4e892915
SSDEEP

49152:p5/diQU/Yy/PTBBkMXQshQfIMcrxTOTPTe0rt0FPnCKakOF0ueb6tp/WjTk:p5Ffy/VBkSQshQfWr0TPTneZ6kOF/kQD

Score

7^/10

Malware Config

Targets

- Target
  
  da558228b47aa3d4dce53474e84fa5d6340cb3af1eee5d279e64685458f06ff2
- Size
  
  2.4MB
- MD5
  
  b526e3f6c71759955564a1df0196ed4e
- SHA1
  
  e754514fe13c7ffe7af2e662a6b852e8748a4388
- SHA256
  
  da558228b47aa3d4dce53474e84fa5d6340cb3af1eee5d279e64685458f06ff2
- SHA512
  
  164687a922185f9844d57d53bed9f4b1080bd93dd07dbc05f1fb48504ed3c60d40cc1e896aeec2b4db19223a364b0999560e13eec16047124d2c01dc4e892915
- SSDEEP
  
  49152:p5/diQU/Yy/PTBBkMXQshQfIMcrxTOTPTe0rt0FPnCKakOF0ueb6tp/WjTk:p5Ffy/VBkSQshQfWr0TPTneZ6kOF/kQD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2