32281b9b443bac1c8998a69c4edd9745f90c104ddd50008be6876e30a77518cf | Triage

Sharing

General

Target

32281b9b443bac1c8998a69c4edd9745f90c104ddd50008be6876e30a77518cf
Size

1.2MB
Sample

221125-dlvbdabd2v
MD5

d62534da050a56eb8da5a1ee290ffa82
SHA1

f7c5b7443654a3b89e534d56c97df238496a6f32
SHA256

32281b9b443bac1c8998a69c4edd9745f90c104ddd50008be6876e30a77518cf
SHA512

ec1ecb76dcf6862022909e36bcfc84d70a520bf384c57f1fe2cba0f64d2a8bc8063685c42dc0200f6bfab0a7952dca4c0429e0d1cf2ed639856ac71904ac738b
SSDEEP

24576:sbDxFELkOhLmS/dSzw8bjrRWMjkr1B2pJ/zEX9pECwj:uHE5hLmuSzfbjrRhkr1B2pJ/zEX9qCwj

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  32281b9b443bac1c8998a69c4edd9745f90c104ddd50008be6876e30a77518cf
- Size
  
  1.2MB
- MD5
  
  d62534da050a56eb8da5a1ee290ffa82
- SHA1
  
  f7c5b7443654a3b89e534d56c97df238496a6f32
- SHA256
  
  32281b9b443bac1c8998a69c4edd9745f90c104ddd50008be6876e30a77518cf
- SHA512
  
  ec1ecb76dcf6862022909e36bcfc84d70a520bf384c57f1fe2cba0f64d2a8bc8063685c42dc0200f6bfab0a7952dca4c0429e0d1cf2ed639856ac71904ac738b
- SSDEEP
  
  24576:sbDxFELkOhLmS/dSzw8bjrRWMjkr1B2pJ/zEX9pECwj:uHE5hLmuSzfbjrRhkr1B2pJ/zEX9qCwj
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2