5eda3e3c0e8604710413d0e5d8702699aa1cb76c73fd586e7e2d8d40f6d41b99 | Triage

Sharing

General

Target

5eda3e3c0e8604710413d0e5d8702699aa1cb76c73fd586e7e2d8d40f6d41b99
Size

201KB
Sample

221125-xvweksca9z
MD5

d844ce144ed2e61ffa31e18cd862b60f
SHA1

95ed5006bf6f24900bab497829791625d88b8912
SHA256

5eda3e3c0e8604710413d0e5d8702699aa1cb76c73fd586e7e2d8d40f6d41b99
SHA512

21e46be9bff85172a788138579892aab05033e56591e7541cd7b92682058bf7bcaf2491cd4beff1b6e2026ddfeebd71fadd2629f21b98934252cb58a51004a5c
SSDEEP

3072:3uXG1BWNVI6vqC/0Q7cNyzu5LM7b1uI+1dqdukkvs1C8/ehoraNUXcQDL2Em:FWNNzuAMIGpvs1C8/ehoraNUXZDKEm

Score

7^/10

Malware Config

Targets

- Target
  
  5eda3e3c0e8604710413d0e5d8702699aa1cb76c73fd586e7e2d8d40f6d41b99
- Size
  
  201KB
- MD5
  
  d844ce144ed2e61ffa31e18cd862b60f
- SHA1
  
  95ed5006bf6f24900bab497829791625d88b8912
- SHA256
  
  5eda3e3c0e8604710413d0e5d8702699aa1cb76c73fd586e7e2d8d40f6d41b99
- SHA512
  
  21e46be9bff85172a788138579892aab05033e56591e7541cd7b92682058bf7bcaf2491cd4beff1b6e2026ddfeebd71fadd2629f21b98934252cb58a51004a5c
- SSDEEP
  
  3072:3uXG1BWNVI6vqC/0Q7cNyzu5LM7b1uI+1dqdukkvs1C8/ehoraNUXcQDL2Em:FWNNzuAMIGpvs1C8/ehoraNUXZDKEm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2