5983df5bde3c35da4eaa684145c9cf413c99ae29decc2088880d5b2ee8af90b3 | Triage

Sharing

General

Target

5983df5bde3c35da4eaa684145c9cf413c99ae29decc2088880d5b2ee8af90b3
Size

724KB
Sample

221127-vkk5ragh8y
MD5

951ddc162aca63083933b40f4fc3c0b9
SHA1

4fa550b4146807e4714219960088cc0a5af6db98
SHA256

5983df5bde3c35da4eaa684145c9cf413c99ae29decc2088880d5b2ee8af90b3
SHA512

9213f0d345ae73039132bc99250f03366f78435a8598fdab2210e9a850f7b1c1b598d58013049ac49148abdbc29993078b892067acdd76b5d604936c595d4927
SSDEEP

12288:vScaAytRpk6f21DgftyF9jJQ/e/AdfwQY3csQv/QrdBgorD3GnZY:agytvk6f2wy9jJQ/e/AdfwQY3ZQv/QrQ

Score

8^/10

Malware Config

Targets

- Target
  
  5983df5bde3c35da4eaa684145c9cf413c99ae29decc2088880d5b2ee8af90b3
- Size
  
  724KB
- MD5
  
  951ddc162aca63083933b40f4fc3c0b9
- SHA1
  
  4fa550b4146807e4714219960088cc0a5af6db98
- SHA256
  
  5983df5bde3c35da4eaa684145c9cf413c99ae29decc2088880d5b2ee8af90b3
- SHA512
  
  9213f0d345ae73039132bc99250f03366f78435a8598fdab2210e9a850f7b1c1b598d58013049ac49148abdbc29993078b892067acdd76b5d604936c595d4927
- SSDEEP
  
  12288:vScaAytRpk6f21DgftyF9jJQ/e/AdfwQY3csQv/QrdBgorD3GnZY:agytvk6f2wy9jJQ/e/AdfwQY3ZQv/QrQ
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2