b720bf977158524d64691675c90ca034025207368e28c8bafae4d62e3ef31b0d | Triage

Sharing

General

Target

b720bf977158524d64691675c90ca034025207368e28c8bafae4d62e3ef31b0d
Size

1.4MB
Sample

221125-mpbswaba64
MD5

4b82a5d8e1dacd4b08cb7f5af50f615b
SHA1

dbdb0b6d07204c446b33573f70ec0394fef65cb0
SHA256

b720bf977158524d64691675c90ca034025207368e28c8bafae4d62e3ef31b0d
SHA512

7b4e3d5256cf5b10a1d7b524dce0c48a9bb7817908705090dcd036be13b71bbad975b981a80d43c03a5a8a0d59f0db82667d74f4eeadd99d6ed5f60f98e3041f
SSDEEP

24576:/pa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGI:YcZC35VcOcmDcc6Cda

Score

7^/10

Malware Config

Targets

- Target
  
  b720bf977158524d64691675c90ca034025207368e28c8bafae4d62e3ef31b0d
- Size
  
  1.4MB
- MD5
  
  4b82a5d8e1dacd4b08cb7f5af50f615b
- SHA1
  
  dbdb0b6d07204c446b33573f70ec0394fef65cb0
- SHA256
  
  b720bf977158524d64691675c90ca034025207368e28c8bafae4d62e3ef31b0d
- SHA512
  
  7b4e3d5256cf5b10a1d7b524dce0c48a9bb7817908705090dcd036be13b71bbad975b981a80d43c03a5a8a0d59f0db82667d74f4eeadd99d6ed5f60f98e3041f
- SSDEEP
  
  24576:/pa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGI:YcZC35VcOcmDcc6Cda
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2