18efd26f0486d440029045fd6f1cbf0cf525aad55370a298a37caa5a8ea759c3 | Triage

Sharing

General

Target

18efd26f0486d440029045fd6f1cbf0cf525aad55370a298a37caa5a8ea759c3
Size

625KB
Sample

221127-rbpj2agc6t
MD5

17aff4427e87679fdf32149c4dc3fce1
SHA1

d24c5514f66918ce46dcfe3a859f620e8b614e69
SHA256

18efd26f0486d440029045fd6f1cbf0cf525aad55370a298a37caa5a8ea759c3
SHA512

59eebf2a74dc952d260a93525cc29b1309a183cce2b8c365fd57091474a3683c103802b6f28dcdbd800ea752a8178ca7bd196a7d460e4ef8841ce016986e9d3f
SSDEEP

12288:W8lo4a0yuf6HpVwvDn1DsUPe+rcWr8l2UaXJcYvT8Zi9U7:TdCHvwvDDrcWk2LZcYrr9U7

Score

7^/10

Malware Config

Targets

- Target
  
  18efd26f0486d440029045fd6f1cbf0cf525aad55370a298a37caa5a8ea759c3
- Size
  
  625KB
- MD5
  
  17aff4427e87679fdf32149c4dc3fce1
- SHA1
  
  d24c5514f66918ce46dcfe3a859f620e8b614e69
- SHA256
  
  18efd26f0486d440029045fd6f1cbf0cf525aad55370a298a37caa5a8ea759c3
- SHA512
  
  59eebf2a74dc952d260a93525cc29b1309a183cce2b8c365fd57091474a3683c103802b6f28dcdbd800ea752a8178ca7bd196a7d460e4ef8841ce016986e9d3f
- SSDEEP
  
  12288:W8lo4a0yuf6HpVwvDn1DsUPe+rcWr8l2UaXJcYvT8Zi9U7:TdCHvwvDDrcWk2LZcYrr9U7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2