b23d1e546b93fbbb6e932dbfe5cbf96f511524d1af7fb3b46ed47400d8fd72b6 | Triage

Sharing

General

Target

b23d1e546b93fbbb6e932dbfe5cbf96f511524d1af7fb3b46ed47400d8fd72b6
Size

13KB
Sample

221123-zyzbrahb7y
MD5

5bfb2a262ae9b96779a79a34de54bd59
SHA1

9c0584881dda7b998f6d36ad3616200bf63f84c5
SHA256

b23d1e546b93fbbb6e932dbfe5cbf96f511524d1af7fb3b46ed47400d8fd72b6
SHA512

3f781c348b8a536ddfe1adc37ed35126c19f5aac033628702083582ce4e527426b7e2d24a79ca54e9be3ad178ca8deb45cf9b71007369aa401666094ee255499
SSDEEP

384:6zzVqiGagRYwZSFFOECXCghDSHXWmZg1r+9f7qN:6zxqagRYwZSGECXCgMmsgV/N

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  b23d1e546b93fbbb6e932dbfe5cbf96f511524d1af7fb3b46ed47400d8fd72b6
- Size
  
  13KB
- MD5
  
  5bfb2a262ae9b96779a79a34de54bd59
- SHA1
  
  9c0584881dda7b998f6d36ad3616200bf63f84c5
- SHA256
  
  b23d1e546b93fbbb6e932dbfe5cbf96f511524d1af7fb3b46ed47400d8fd72b6
- SHA512
  
  3f781c348b8a536ddfe1adc37ed35126c19f5aac033628702083582ce4e527426b7e2d24a79ca54e9be3ad178ca8deb45cf9b71007369aa401666094ee255499
- SSDEEP
  
  384:6zzVqiGagRYwZSFFOECXCghDSHXWmZg1r+9f7qN:6zxqagRYwZSGECXCgMmsgV/N
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2