abe41f5ba0f737beb01d8b8722f9b1ad04ed08b4c32397e88927f8a4d68d1c13 | Triage

Sharing

General

Target

abe41f5ba0f737beb01d8b8722f9b1ad04ed08b4c32397e88927f8a4d68d1c13
Size

191KB
Sample

221124-eyj7lsgg63
MD5

20419934a211e00d22a85812b4efc454
SHA1

8a3e9fd6bcc3a5dbaea80063a0fdb24375bdf416
SHA256

abe41f5ba0f737beb01d8b8722f9b1ad04ed08b4c32397e88927f8a4d68d1c13
SHA512

5a0cbf3d3872775d9f7202c92cb55fa9efd5a6b07cff7e7749d3ef319be58905a9852f8fc8f0fe6f2402c5677795071898cb158347c724573385f19b99af3209
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dP:HAVySV1eY4k437d+4wkTHdS26I

Score

7^/10

Malware Config

Targets

- Target
  
  abe41f5ba0f737beb01d8b8722f9b1ad04ed08b4c32397e88927f8a4d68d1c13
- Size
  
  191KB
- MD5
  
  20419934a211e00d22a85812b4efc454
- SHA1
  
  8a3e9fd6bcc3a5dbaea80063a0fdb24375bdf416
- SHA256
  
  abe41f5ba0f737beb01d8b8722f9b1ad04ed08b4c32397e88927f8a4d68d1c13
- SHA512
  
  5a0cbf3d3872775d9f7202c92cb55fa9efd5a6b07cff7e7749d3ef319be58905a9852f8fc8f0fe6f2402c5677795071898cb158347c724573385f19b99af3209
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dP:HAVySV1eY4k437d+4wkTHdS26I
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2