a53eef623083ea281c8f02187d66b825b6bf78833f0b9e6791c6a54eafa90921 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a53eef623083ea281c8f02187d66b825b6bf78833f0b9e6791c6a54eafa90921
Size

88KB
Sample

221129-srtdlaee4t
MD5

fae815bbce3f48b02cf727b4ef3b0086
SHA1

447fff12c98c10aba38e9e160daa707a50503b21
SHA256

a53eef623083ea281c8f02187d66b825b6bf78833f0b9e6791c6a54eafa90921
SHA512

d825bd85e83621ecc85e59a8a6a0058b250da73b48e03b4be51279b3518c2e0d7cdc6c44d91120550085e579dce2c7a6d6c8f7dad1db568d9391b7fd0c90dc82
SSDEEP

1536:T+wxpuvSy3F2dXd+H6p5eQrkO93P18JOFrxAX:Lty3F2dXd9pEQrDNN8JOFr2

Score

7^/10

Malware Config

Targets

- Target
  
  a53eef623083ea281c8f02187d66b825b6bf78833f0b9e6791c6a54eafa90921
- Size
  
  88KB
- MD5
  
  fae815bbce3f48b02cf727b4ef3b0086
- SHA1
  
  447fff12c98c10aba38e9e160daa707a50503b21
- SHA256
  
  a53eef623083ea281c8f02187d66b825b6bf78833f0b9e6791c6a54eafa90921
- SHA512
  
  d825bd85e83621ecc85e59a8a6a0058b250da73b48e03b4be51279b3518c2e0d7cdc6c44d91120550085e579dce2c7a6d6c8f7dad1db568d9391b7fd0c90dc82
- SSDEEP
  
  1536:T+wxpuvSy3F2dXd+H6p5eQrkO93P18JOFrxAX:Lty3F2dXd9pEQrDNN8JOFr2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2