4164000312649e39f3a8c003440a7335196b79af8a29bdf36265b0914cee7a9d | Triage

Sharing

General

Target

4164000312649e39f3a8c003440a7335196b79af8a29bdf36265b0914cee7a9d
Size

44KB
Sample

221123-xv2xcsbb3z
MD5

46d15631a1d8dbf7d5bfed755a879190
SHA1

a670e715c31597c5ed004420bd5d5b3ac18357b3
SHA256

4164000312649e39f3a8c003440a7335196b79af8a29bdf36265b0914cee7a9d
SHA512

e5b820303c30418fb374be73da0309458f5235402302798a8ab95d9e92001613384eee0080d71cd98b6fea03a670177df7a2486a5dc41e9f3a6dccb274fdda31
SSDEEP

384:6bir54uJsPa0NLnIzz2x2b2vjPx03w8Du3jsBYRAGryf4pxI/6ps2QdhA4I7m34I:oiaucakDI2KVw8gpyf4pxGAFgN

Score

7^/10

Malware Config

Targets

- Target
  
  4164000312649e39f3a8c003440a7335196b79af8a29bdf36265b0914cee7a9d
- Size
  
  44KB
- MD5
  
  46d15631a1d8dbf7d5bfed755a879190
- SHA1
  
  a670e715c31597c5ed004420bd5d5b3ac18357b3
- SHA256
  
  4164000312649e39f3a8c003440a7335196b79af8a29bdf36265b0914cee7a9d
- SHA512
  
  e5b820303c30418fb374be73da0309458f5235402302798a8ab95d9e92001613384eee0080d71cd98b6fea03a670177df7a2486a5dc41e9f3a6dccb274fdda31
- SSDEEP
  
  384:6bir54uJsPa0NLnIzz2x2b2vjPx03w8Du3jsBYRAGryf4pxI/6ps2QdhA4I7m34I:oiaucakDI2KVw8gpyf4pxGAFgN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2