e9162a72bf996d6201a3ff7f49c4ac9f01b6758e25fafb99354e18ea27fc7c13 | Triage

Sharing

General

Target

e9162a72bf996d6201a3ff7f49c4ac9f01b6758e25fafb99354e18ea27fc7c13
Size

1.5MB
Sample

221125-hkhneace5t
MD5

e84676bb6ff9435b81e3f49e262de91d
SHA1

3eca53eafb62cb4c6afb6fde9fd2519a87fec393
SHA256

e9162a72bf996d6201a3ff7f49c4ac9f01b6758e25fafb99354e18ea27fc7c13
SHA512

3017c3305e45e2b20372753d2683bcb201acf46a86c037f326b48cb016c450ec9998474e70697faaeb0a1df09655a980a2455854c62871a14f3106a073ee19f3
SSDEEP

24576:Hpa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eG:wcZC35VcOcmDcc6Cd

Score

7^/10

Malware Config

Targets

- Target
  
  e9162a72bf996d6201a3ff7f49c4ac9f01b6758e25fafb99354e18ea27fc7c13
- Size
  
  1.5MB
- MD5
  
  e84676bb6ff9435b81e3f49e262de91d
- SHA1
  
  3eca53eafb62cb4c6afb6fde9fd2519a87fec393
- SHA256
  
  e9162a72bf996d6201a3ff7f49c4ac9f01b6758e25fafb99354e18ea27fc7c13
- SHA512
  
  3017c3305e45e2b20372753d2683bcb201acf46a86c037f326b48cb016c450ec9998474e70697faaeb0a1df09655a980a2455854c62871a14f3106a073ee19f3
- SSDEEP
  
  24576:Hpa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eG:wcZC35VcOcmDcc6Cd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2