ff0561bfa3f446a250b5ef808339a983ceea64a765aae80e234888b3c2dfc7fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ff0561bfa3f446a250b5ef808339a983ceea64a765aae80e234888b3c2dfc7fa
Size

84KB
Sample

221129-srlnrabf98
MD5

33ce11ab1decf31d231b096ea4e4cc02
SHA1

5d9124d7b823af2f03adf5ee26efac4eed9e4838
SHA256

ff0561bfa3f446a250b5ef808339a983ceea64a765aae80e234888b3c2dfc7fa
SHA512

b2ddae75db8dc7b1eccaacf2aa14ffb82b0433e2862cca3e612d1d92d5e42e145ce8c456653bbc4bc410062195fae8598c0956fe0e84731b33b439ffdb585601
SSDEEP

1536:d6gO8NyEegve1dkmwQegKYQuCL4mx8lss4t4:dE8NyBgvo6XBYQuCLqlx

Score

7^/10

Malware Config

Targets

- Target
  
  ff0561bfa3f446a250b5ef808339a983ceea64a765aae80e234888b3c2dfc7fa
- Size
  
  84KB
- MD5
  
  33ce11ab1decf31d231b096ea4e4cc02
- SHA1
  
  5d9124d7b823af2f03adf5ee26efac4eed9e4838
- SHA256
  
  ff0561bfa3f446a250b5ef808339a983ceea64a765aae80e234888b3c2dfc7fa
- SHA512
  
  b2ddae75db8dc7b1eccaacf2aa14ffb82b0433e2862cca3e612d1d92d5e42e145ce8c456653bbc4bc410062195fae8598c0956fe0e84731b33b439ffdb585601
- SSDEEP
  
  1536:d6gO8NyEegve1dkmwQegKYQuCL4mx8lss4t4:dE8NyBgvo6XBYQuCLqlx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2