3df0ffaf2696ac8f48c673872f0b3ff50927c6113a03466cec224ecf77caf03a | Triage

Sharing

General

Target

3df0ffaf2696ac8f48c673872f0b3ff50927c6113a03466cec224ecf77caf03a
Size

1.4MB
Sample

221127-n9krysag2s
MD5

64a43bb9ec36b26aeedd0be1ae649af2
SHA1

e420f1105b7351c1eae3a7b707e2af69a7a8fb46
SHA256

3df0ffaf2696ac8f48c673872f0b3ff50927c6113a03466cec224ecf77caf03a
SHA512

5598ff741abd51b0bd1d06693d3fc2f5ee3c464173f6b993c0a2b54f723c8361ee479572c1b6d08f760fffe6feef1acf6d98f1b87a87ccc1b419d809aa58d225
SSDEEP

24576:gJr8tE+gHqhbELe9ckJFmBqvNW8maeqetrTsyvpP6GyxRc/zDaVRx3Yyt115:gJ4NhAqckJAIvA8mawtrjvpPbyxRc/6F

Score

7^/10

Malware Config

Targets

- Target
  
  3df0ffaf2696ac8f48c673872f0b3ff50927c6113a03466cec224ecf77caf03a
- Size
  
  1.4MB
- MD5
  
  64a43bb9ec36b26aeedd0be1ae649af2
- SHA1
  
  e420f1105b7351c1eae3a7b707e2af69a7a8fb46
- SHA256
  
  3df0ffaf2696ac8f48c673872f0b3ff50927c6113a03466cec224ecf77caf03a
- SHA512
  
  5598ff741abd51b0bd1d06693d3fc2f5ee3c464173f6b993c0a2b54f723c8361ee479572c1b6d08f760fffe6feef1acf6d98f1b87a87ccc1b419d809aa58d225
- SSDEEP
  
  24576:gJr8tE+gHqhbELe9ckJFmBqvNW8maeqetrTsyvpP6GyxRc/zDaVRx3Yyt115:gJ4NhAqckJAIvA8mawtrjvpPbyxRc/6F
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1