abf32910235cd7b2fa6664889184592a56787a091373a7d4508d320b51acc899 | Triage

Sharing

General

Target

abf32910235cd7b2fa6664889184592a56787a091373a7d4508d320b51acc899
Size

184KB
Sample

221124-edljyafc83
MD5

1d4999f0a00b4ac4d7a11fb5f7bc037e
SHA1

1ed1997042f7bd9a558ab1c3dcd3bea92de12132
SHA256

abf32910235cd7b2fa6664889184592a56787a091373a7d4508d320b51acc899
SHA512

62b04be09c507b5eae8d32b9bdaa543db39ac1fe683c7a2dd1307f449b164cffc0482a7d1771a72b985a96614dfe1fcb6a37ac5346c6f4050b02aa90063d4884
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3va:/7BSH8zUB+nGESaaRvoB7FJNndnwa

Score

8^/10

Malware Config

Targets

- Target
  
  abf32910235cd7b2fa6664889184592a56787a091373a7d4508d320b51acc899
- Size
  
  184KB
- MD5
  
  1d4999f0a00b4ac4d7a11fb5f7bc037e
- SHA1
  
  1ed1997042f7bd9a558ab1c3dcd3bea92de12132
- SHA256
  
  abf32910235cd7b2fa6664889184592a56787a091373a7d4508d320b51acc899
- SHA512
  
  62b04be09c507b5eae8d32b9bdaa543db39ac1fe683c7a2dd1307f449b164cffc0482a7d1771a72b985a96614dfe1fcb6a37ac5346c6f4050b02aa90063d4884
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3va:/7BSH8zUB+nGESaaRvoB7FJNndnwa
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2