249f2a250a14a496c44807d0f363e220cc7063bf81952e618df96e4becca8c9f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

249f2a250a14a496c44807d0f363e220cc7063bf81952e618df96e4becca8c9f
Size

72KB
Sample

221129-pplzyscd7s
MD5

fe8cf7d3113d269e2bd2fb8169e472b4
SHA1

0af1d76d2af89176b6f2cda37257aa6a479541ae
SHA256

249f2a250a14a496c44807d0f363e220cc7063bf81952e618df96e4becca8c9f
SHA512

a8bde9b80bb2391056a5dd7a190f21f4ae745d2deba1eeb6173c8422988288ec38802fa4ebf422aedf0f8f88ce5f0ff8b08f06c5be6222b11cfca6b86c3600d9
SSDEEP

1536:K1UfG4FtE/r/I6uVOrFeGEIIwodsohNt4ZMwyVF:S4/2r/InpfINoz5wu

Score

7^/10

Malware Config

Targets

- Target
  
  249f2a250a14a496c44807d0f363e220cc7063bf81952e618df96e4becca8c9f
- Size
  
  72KB
- MD5
  
  fe8cf7d3113d269e2bd2fb8169e472b4
- SHA1
  
  0af1d76d2af89176b6f2cda37257aa6a479541ae
- SHA256
  
  249f2a250a14a496c44807d0f363e220cc7063bf81952e618df96e4becca8c9f
- SHA512
  
  a8bde9b80bb2391056a5dd7a190f21f4ae745d2deba1eeb6173c8422988288ec38802fa4ebf422aedf0f8f88ce5f0ff8b08f06c5be6222b11cfca6b86c3600d9
- SSDEEP
  
  1536:K1UfG4FtE/r/I6uVOrFeGEIIwodsohNt4ZMwyVF:S4/2r/InpfINoz5wu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2