ca51d108260a5dfd9ae4c02d3302ae91ebdfdad91ab75b4228371ace04290abf | Triage

Sharing

General

Target

ca51d108260a5dfd9ae4c02d3302ae91ebdfdad91ab75b4228371ace04290abf
Size

140KB
Sample

221123-z2m3wshd6y
MD5

f38dbe82dc33a19ce1df8c0013993cf4
SHA1

55a62208d33323f95aaf399653fb90db7d32348a
SHA256

ca51d108260a5dfd9ae4c02d3302ae91ebdfdad91ab75b4228371ace04290abf
SHA512

afc5484f53da744c2f2aa0ca72534aace14a231042739b6deec7f729d6e4fc53c14cfc5e8942743246b53e001fd0728321a860b1646322c079106d8348a20cce
SSDEEP

1536:ejeOZx8kZRMuKPheRTHNo2rNo8EgnxTwBII9zLKFisRxcyeC2X2qCLmob8OVPeVC:eKwtAWTBRnxTbvcoU0L78OVGvU

Score

7^/10

Malware Config

Targets

- Target
  
  Hvilested.vbs
- Size
  
  135KB
- MD5
  
  36b1f36ea9b9752a8af52202daeebfd3
- SHA1
  
  a3e4e48fe2c1897930dce07e758e1e590a00d2ad
- SHA256
  
  8b4d69556cd93e5b27c7fdc3a7e765fcb6f45ebd8451ee4e9fa9a515aac6811d
- SHA512
  
  d3172ec500241d744319495b585d558ffd625f767f333d1751b1fa6fa25401db8253bd97892a91e994cffbad0df1925f0f6abdb7bb61fff0b1b2cd6ed59da466
- SSDEEP
  
  1536:TjeOZx8kZRMuKPheRTHNo2rNo8EgnxTwBII9zLKFisRxcyeC2X2qCLmob8OVPeVv:TKwtAWTBRnxTbvcoU0L78OVGvUc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2