66d8d623f573a4d9b66a549394e3dc9902a9506f8a01391fea330e6fa88b1861 | Triage

Sharing

General

Target

66d8d623f573a4d9b66a549394e3dc9902a9506f8a01391fea330e6fa88b1861
Size

112KB
Sample

221201-3cbv4sbe68
MD5

3a61938ac112830fc4846f8ee994f6c9
SHA1

0294338003735e683bf2d33d54067e8d7636f240
SHA256

66d8d623f573a4d9b66a549394e3dc9902a9506f8a01391fea330e6fa88b1861
SHA512

4c0c88a38ca358a5857090e034a7c4c3b329f352684e0e7c7069dc08e50badc251d47110b057aefc78fd45e0956f784f73f75724df4268525dc340a74c1a200a
SSDEEP

1536:tA7fe/ZfdsAiIrSMfBXbeLUYOoBl5Fft8c3zJdx2ntpDWIkFsbXV/xpq/L0cRioH:tGGZnTtov/ebUocRiozmNijlQCxtSz2

Score

7^/10

Malware Config

Targets

- Target
  
  66d8d623f573a4d9b66a549394e3dc9902a9506f8a01391fea330e6fa88b1861
- Size
  
  112KB
- MD5
  
  3a61938ac112830fc4846f8ee994f6c9
- SHA1
  
  0294338003735e683bf2d33d54067e8d7636f240
- SHA256
  
  66d8d623f573a4d9b66a549394e3dc9902a9506f8a01391fea330e6fa88b1861
- SHA512
  
  4c0c88a38ca358a5857090e034a7c4c3b329f352684e0e7c7069dc08e50badc251d47110b057aefc78fd45e0956f784f73f75724df4268525dc340a74c1a200a
- SSDEEP
  
  1536:tA7fe/ZfdsAiIrSMfBXbeLUYOoBl5Fft8c3zJdx2ntpDWIkFsbXV/xpq/L0cRioH:tGGZnTtov/ebUocRiozmNijlQCxtSz2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2