5e83d97f19b5a563560f1e004eab30c17275295cf0c8cf7641614f4f39c78d17 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5e83d97f19b5a563560f1e004eab30c17275295cf0c8cf7641614f4f39c78d17
Size

162KB
Sample

221123-x1wmjagf29
MD5

02c617c920482b231b03a002541c35e7
SHA1

adc55848570bc4718e25c6a0131cd63ca2f4ba0e
SHA256

5e83d97f19b5a563560f1e004eab30c17275295cf0c8cf7641614f4f39c78d17
SHA512

7813858f3754172650a61e931d48e003ffa112dcb5b66e0562efd82cf566724b35eb988b1c2dba463c567e91483bc6e43d6fa14a9da1754fed5c5a9050ee2e7d
SSDEEP

3072:O/7UTpCV3eN1mEbdnkdfYTz8oDp3DAWU:O/7GNbmEByYTz/hDA

Score

7^/10

Malware Config

Targets

- Target
  
  5e83d97f19b5a563560f1e004eab30c17275295cf0c8cf7641614f4f39c78d17
- Size
  
  162KB
- MD5
  
  02c617c920482b231b03a002541c35e7
- SHA1
  
  adc55848570bc4718e25c6a0131cd63ca2f4ba0e
- SHA256
  
  5e83d97f19b5a563560f1e004eab30c17275295cf0c8cf7641614f4f39c78d17
- SHA512
  
  7813858f3754172650a61e931d48e003ffa112dcb5b66e0562efd82cf566724b35eb988b1c2dba463c567e91483bc6e43d6fa14a9da1754fed5c5a9050ee2e7d
- SSDEEP
  
  3072:O/7UTpCV3eN1mEbdnkdfYTz8oDp3DAWU:O/7GNbmEByYTz/hDA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2