b3b844d7458fa6608ee2c89e8cef9752bcae65be7e83d1656c945355892b61aa | Triage

Sharing

General

Target

b3b844d7458fa6608ee2c89e8cef9752bcae65be7e83d1656c945355892b61aa
Size

86KB
Sample

221123-s963eadd87
MD5

486350a25af411ac10d3ed6ff36310b0
SHA1

fa486916634919089786018a1e968be09c001fb1
SHA256

b3b844d7458fa6608ee2c89e8cef9752bcae65be7e83d1656c945355892b61aa
SHA512

e7b96abc991a18ae22e11cd5fdc64a4e95ecfb91027347bf6b709222271e165288082b75905ce41745e92d9489acd3ef3923e9bda0590954c0efca07e817790e
SSDEEP

768:K6wKiqe569LNZQcEbDxH1Ar/kUBlefkjv7yCjeLxyH6Pq5wIEQOx7EhuSwj/Z/0S:K6wVcLNe/ViMclCNCjeeoq5EQOHr9x

Score

7^/10

Malware Config

Targets

- Target
  
  b3b844d7458fa6608ee2c89e8cef9752bcae65be7e83d1656c945355892b61aa
- Size
  
  86KB
- MD5
  
  486350a25af411ac10d3ed6ff36310b0
- SHA1
  
  fa486916634919089786018a1e968be09c001fb1
- SHA256
  
  b3b844d7458fa6608ee2c89e8cef9752bcae65be7e83d1656c945355892b61aa
- SHA512
  
  e7b96abc991a18ae22e11cd5fdc64a4e95ecfb91027347bf6b709222271e165288082b75905ce41745e92d9489acd3ef3923e9bda0590954c0efca07e817790e
- SSDEEP
  
  768:K6wKiqe569LNZQcEbDxH1Ar/kUBlefkjv7yCjeLxyH6Pq5wIEQOx7EhuSwj/Z/0S:K6wVcLNe/ViMclCNCjeeoq5EQOHr9x
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2