dc5ad8ed61a477add66c5a4b9147ca199ea509557b00965be444afe459bc8dd7 | Triage

Sharing

General

Target

dc5ad8ed61a477add66c5a4b9147ca199ea509557b00965be444afe459bc8dd7
Size

88KB
Sample

221123-vfcb2sbg7t
MD5

5373d9b1f2f6c0c0c96bb2bddcc36920
SHA1

a17b0d67665abc5802c040ad1e4660320338e42c
SHA256

dc5ad8ed61a477add66c5a4b9147ca199ea509557b00965be444afe459bc8dd7
SHA512

1d2600fe059ebee0632baf91868df8e009fbc0a3b034b36f0449c48717846e75f368981b29121191469ecc5b6a4b364a3b2303548b392140d41da5ae359ed4a5
SSDEEP

1536:dawyQ/jSqsevj9FElorg8/iwHdk6SzuAatLfts4V0dVnjy+OnnUEu+csEcbu:Hvj9oorg8/bHdk6SzuAatLfts4KVnjyZ

Score

7^/10

Malware Config

Targets

- Target
  
  dc5ad8ed61a477add66c5a4b9147ca199ea509557b00965be444afe459bc8dd7
- Size
  
  88KB
- MD5
  
  5373d9b1f2f6c0c0c96bb2bddcc36920
- SHA1
  
  a17b0d67665abc5802c040ad1e4660320338e42c
- SHA256
  
  dc5ad8ed61a477add66c5a4b9147ca199ea509557b00965be444afe459bc8dd7
- SHA512
  
  1d2600fe059ebee0632baf91868df8e009fbc0a3b034b36f0449c48717846e75f368981b29121191469ecc5b6a4b364a3b2303548b392140d41da5ae359ed4a5
- SSDEEP
  
  1536:dawyQ/jSqsevj9FElorg8/iwHdk6SzuAatLfts4V0dVnjy+OnnUEu+csEcbu:Hvj9oorg8/bHdk6SzuAatLfts4KVnjyZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2