08c44f7fee27b3afcb79c2d489aacf33b841c8b7aa521906f98bb8f838ead682 | Triage

Sharing

General

Target

08c44f7fee27b3afcb79c2d489aacf33b841c8b7aa521906f98bb8f838ead682
Size

1.3MB
Sample

221124-lhdhfshb2w
MD5

13f7cabdf07a9e010d1f082ca2a37c98
SHA1

50c92a159e14ebba8881f2b84614fbd600c221d0
SHA256

08c44f7fee27b3afcb79c2d489aacf33b841c8b7aa521906f98bb8f838ead682
SHA512

de83d7b23114fb97fff88a3c5b2084985a978b161345b38bbe36e43fd2aca8f21aa1c8d5b6f71aed49a4aa27c48c6f53fe22eb1ab9008ffc2f84d584ac812c7b
SSDEEP

24576:PNBItMyxM0iQJB7ZcuC2rzb6yvGjUIhqZWhK9gsk5ZKifEzu6WEzRvSYSo:4Y0iQJUZuieIhqZWhKCskKiMzbnl7So

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  08c44f7fee27b3afcb79c2d489aacf33b841c8b7aa521906f98bb8f838ead682
- Size
  
  1.3MB
- MD5
  
  13f7cabdf07a9e010d1f082ca2a37c98
- SHA1
  
  50c92a159e14ebba8881f2b84614fbd600c221d0
- SHA256
  
  08c44f7fee27b3afcb79c2d489aacf33b841c8b7aa521906f98bb8f838ead682
- SHA512
  
  de83d7b23114fb97fff88a3c5b2084985a978b161345b38bbe36e43fd2aca8f21aa1c8d5b6f71aed49a4aa27c48c6f53fe22eb1ab9008ffc2f84d584ac812c7b
- SSDEEP
  
  24576:PNBItMyxM0iQJB7ZcuC2rzb6yvGjUIhqZWhK9gsk5ZKifEzu6WEzRvSYSo:4Y0iQJUZuieIhqZWhKCskKiMzbnl7So
Score

8^/10

persistence
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2