fa898867ce49e0f214f93f8b0802f2b31dd20084aaab818800c8768ce5041fec | Triage

Sharing

General

Target

fa898867ce49e0f214f93f8b0802f2b31dd20084aaab818800c8768ce5041fec
Size

143KB
Sample

221127-tp9s8see5v
MD5

6ed9a1b21c3a78abeed8040c458788b1
SHA1

af29eb7aaeaecf310e2153112b77dc269e556b3f
SHA256

fa898867ce49e0f214f93f8b0802f2b31dd20084aaab818800c8768ce5041fec
SHA512

d6d74fd979e45a192a22102fc5ee1198737c1bd9cd2f6fcb2cf381ef227ac02b589d5b2ee0ec4066b5d1517593ad9ebdc87c0b2cc099d14807a7bf5505a8a90a
SSDEEP

3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45Dvk:pe9IB83ID5g

Score

7^/10

Malware Config

Targets

- Target
  
  fa898867ce49e0f214f93f8b0802f2b31dd20084aaab818800c8768ce5041fec
- Size
  
  143KB
- MD5
  
  6ed9a1b21c3a78abeed8040c458788b1
- SHA1
  
  af29eb7aaeaecf310e2153112b77dc269e556b3f
- SHA256
  
  fa898867ce49e0f214f93f8b0802f2b31dd20084aaab818800c8768ce5041fec
- SHA512
  
  d6d74fd979e45a192a22102fc5ee1198737c1bd9cd2f6fcb2cf381ef227ac02b589d5b2ee0ec4066b5d1517593ad9ebdc87c0b2cc099d14807a7bf5505a8a90a
- SSDEEP
  
  3072:iN6ZekwVJIlgps5q9Eb648qwlS/+TfQO45Dvk:pe9IB83ID5g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2