9f2bdf2e6bfb7f02420ba15d3987f12cf0d024d130a7f3aea6f69d2e628ee61f | Triage

Sharing

General

Target

9f2bdf2e6bfb7f02420ba15d3987f12cf0d024d130a7f3aea6f69d2e628ee61f
Size

73KB
Sample

221123-qszkwseg55
MD5

7afc2565a64699f44344be7dcba04fdf
SHA1

48d18d377e7052e901fa84f7c01aeef85e176ab8
SHA256

9f2bdf2e6bfb7f02420ba15d3987f12cf0d024d130a7f3aea6f69d2e628ee61f
SHA512

6be05523c8e938086e0c894c4f5ebeda4c1304833abfa7f3e6303c9d5ede42990299382a59bfcdb9700b0b2f45d85e130a23a22cad6753f721e0c07fdf303951
SSDEEP

1536:GZpcHolACEPdkvTvNja5ukGSZsnu2gwoX2tJVblN7JPyDwpAJ9NUEuTK:GZp+4AHkTQ7GSSg2ZD7JPcyAJD

Score

7^/10

evasion trojan

Malware Config

Targets

- Target
  
  9f2bdf2e6bfb7f02420ba15d3987f12cf0d024d130a7f3aea6f69d2e628ee61f
- Size
  
  73KB
- MD5
  
  7afc2565a64699f44344be7dcba04fdf
- SHA1
  
  48d18d377e7052e901fa84f7c01aeef85e176ab8
- SHA256
  
  9f2bdf2e6bfb7f02420ba15d3987f12cf0d024d130a7f3aea6f69d2e628ee61f
- SHA512
  
  6be05523c8e938086e0c894c4f5ebeda4c1304833abfa7f3e6303c9d5ede42990299382a59bfcdb9700b0b2f45d85e130a23a22cad6753f721e0c07fdf303951
- SSDEEP
  
  1536:GZpcHolACEPdkvTvNja5ukGSZsnu2gwoX2tJVblN7JPyDwpAJ9NUEuTK:GZp+4AHkTQ7GSSg2ZD7JPcyAJD
Score

7^/10

evasion trojan
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2