abe9226b3599d14157d31581b71227a48e00558de8e78647dd5b06968db8a4c5 | Triage

Sharing

General

Target

abe9226b3599d14157d31581b71227a48e00558de8e78647dd5b06968db8a4c5
Size

191KB
Sample

221124-errccabe5y
MD5

4db512fea8455e9cca48b74b83b8233d
SHA1

0e19e436f429360d9fcae8feb8f89cf17d180cc5
SHA256

abe9226b3599d14157d31581b71227a48e00558de8e78647dd5b06968db8a4c5
SHA512

15deb3e987dcde3714799d5bcebddb206bfca59021041d4753b523e32897967fba7b8fa590f5768ea37edffd56acaec0cb9a31a5e827c037c26224b4dcaf66e3
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dL:HAVySV1eY4k437d+4wkTHdS2D

Score

7^/10

Malware Config

Targets

- Target
  
  abe9226b3599d14157d31581b71227a48e00558de8e78647dd5b06968db8a4c5
- Size
  
  191KB
- MD5
  
  4db512fea8455e9cca48b74b83b8233d
- SHA1
  
  0e19e436f429360d9fcae8feb8f89cf17d180cc5
- SHA256
  
  abe9226b3599d14157d31581b71227a48e00558de8e78647dd5b06968db8a4c5
- SHA512
  
  15deb3e987dcde3714799d5bcebddb206bfca59021041d4753b523e32897967fba7b8fa590f5768ea37edffd56acaec0cb9a31a5e827c037c26224b4dcaf66e3
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dL:HAVySV1eY4k437d+4wkTHdS2D
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2