895718df2f00b59bdf44b2580093222ad3a7225b773ad6cd8f8dcaa534015700 | Triage

Sharing

General

Target

895718df2f00b59bdf44b2580093222ad3a7225b773ad6cd8f8dcaa534015700
Size

176KB
Sample

221129-v3y5bsae58
MD5

9d1c73c2771041b400e8573edcb1e840
SHA1

6492cd193f25d21163d1f84dea19bba1945b5866
SHA256

895718df2f00b59bdf44b2580093222ad3a7225b773ad6cd8f8dcaa534015700
SHA512

55d02f324acfc8540c1b888f02eab4367fd545183f20ae70391cfb9e82446004897bad6b5a631fa26ddafdaa5a4a512ae5d445287487a8f6ab9f4d9cd0610fc8
SSDEEP

3072:/GDa2tCa7K9vtRB/A+ZdnnLmIDnaapAJaz7H95co2CwGZ+HYY6/n+znSx:+9Vm9vtP/A+/nnLTnatJaooW0+4CI

Score

7^/10

Malware Config

Targets

- Target
  
  895718df2f00b59bdf44b2580093222ad3a7225b773ad6cd8f8dcaa534015700
- Size
  
  176KB
- MD5
  
  9d1c73c2771041b400e8573edcb1e840
- SHA1
  
  6492cd193f25d21163d1f84dea19bba1945b5866
- SHA256
  
  895718df2f00b59bdf44b2580093222ad3a7225b773ad6cd8f8dcaa534015700
- SHA512
  
  55d02f324acfc8540c1b888f02eab4367fd545183f20ae70391cfb9e82446004897bad6b5a631fa26ddafdaa5a4a512ae5d445287487a8f6ab9f4d9cd0610fc8
- SSDEEP
  
  3072:/GDa2tCa7K9vtRB/A+ZdnnLmIDnaapAJaz7H95co2CwGZ+HYY6/n+znSx:+9Vm9vtP/A+/nnLTnatJaooW0+4CI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2