2d81d45668c20f9bf95bab60c003a0be3a36a7ef5c2556d5717682e795632593 | Triage

Sharing

General

Target

2d81d45668c20f9bf95bab60c003a0be3a36a7ef5c2556d5717682e795632593
Size

96KB
Sample

221123-vj4wgahb97
MD5

8da7f9bc00da902a473229d8602511d4
SHA1

90b0168dc4d2870279ce2ea7c0cd16adf23983a3
SHA256

2d81d45668c20f9bf95bab60c003a0be3a36a7ef5c2556d5717682e795632593
SHA512

c522e450382c6f3da0e2375da3f2cafd806c7dc1f0b51dbc8294545fc408156c490cc95e5a2d6fb59b8558d4435ca5babefa184a5878b1d83a91905f6fd17194
SSDEEP

1536:3CtsbjHF1FZcnZcGVBkvb6tUL8TTn7T4PW9cY9efi2s9kp+:3RCZjwvb6tnT4PW9b9Yi2se

Score

8^/10

Malware Config

Targets

- Target
  
  2d81d45668c20f9bf95bab60c003a0be3a36a7ef5c2556d5717682e795632593
- Size
  
  96KB
- MD5
  
  8da7f9bc00da902a473229d8602511d4
- SHA1
  
  90b0168dc4d2870279ce2ea7c0cd16adf23983a3
- SHA256
  
  2d81d45668c20f9bf95bab60c003a0be3a36a7ef5c2556d5717682e795632593
- SHA512
  
  c522e450382c6f3da0e2375da3f2cafd806c7dc1f0b51dbc8294545fc408156c490cc95e5a2d6fb59b8558d4435ca5babefa184a5878b1d83a91905f6fd17194
- SSDEEP
  
  1536:3CtsbjHF1FZcnZcGVBkvb6tUL8TTn7T4PW9cY9efi2s9kp+:3RCZjwvb6tnT4PW9b9Yi2se
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2