3fa5daf8721536ac6dd3e57eccaea074facad601c4a4901ec083c5f23c789823 | Triage

Sharing

General

Target

3fa5daf8721536ac6dd3e57eccaea074facad601c4a4901ec083c5f23c789823
Size

1.5MB
Sample

221125-myx3gabg48
MD5

72a560f225ce7f34a7413015b3fd36e8
SHA1

9fb9321507b4229c587fc2906857f4a00c996c1e
SHA256

3fa5daf8721536ac6dd3e57eccaea074facad601c4a4901ec083c5f23c789823
SHA512

af2fb22a77b5353ccf08223725ff5596e33379b96860c7407e4b4b2b5f50510521ef452396a34d0c23b59b9b5ef2e3b58b3f21db4ff6442d339dea49f900120d
SSDEEP

24576:Bpa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGL:6cZC35VcOcmDcc6Cd1

Score

7^/10

Malware Config

Targets

- Target
  
  3fa5daf8721536ac6dd3e57eccaea074facad601c4a4901ec083c5f23c789823
- Size
  
  1.5MB
- MD5
  
  72a560f225ce7f34a7413015b3fd36e8
- SHA1
  
  9fb9321507b4229c587fc2906857f4a00c996c1e
- SHA256
  
  3fa5daf8721536ac6dd3e57eccaea074facad601c4a4901ec083c5f23c789823
- SHA512
  
  af2fb22a77b5353ccf08223725ff5596e33379b96860c7407e4b4b2b5f50510521ef452396a34d0c23b59b9b5ef2e3b58b3f21db4ff6442d339dea49f900120d
- SSDEEP
  
  24576:Bpa/O74CNt3r2J2FC3eUldZUJ3OlKU4UDcc6Cy+9eGL:6cZC35VcOcmDcc6Cd1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2