a97cfabb95370bdaa2ed548c959d1a5c254ec8ac197223df028465f036cadce2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a97cfabb95370bdaa2ed548c959d1a5c254ec8ac197223df028465f036cadce2
Size

164KB
Sample

221201-m1ec5sef2s
MD5

52b5e253b8487ccce887c312b1f2f141
SHA1

ea17c16c6c6f3960c79d61b2aa0d3f0f1813d8bc
SHA256

a97cfabb95370bdaa2ed548c959d1a5c254ec8ac197223df028465f036cadce2
SHA512

96525bc4987f1cfcbb5e4bebc8662097596e67f3d46baee2b18fc11f249372cecd2a002c649b835784776bc830358490d07b96d75995f764686c811d7969db48
SSDEEP

3072:sf0LEDbSNJcsNviT3lX2ywnIVtXSpHlQkT:TIKt6T1G8Xk

Score

7^/10

Malware Config

Targets

- Target
  
  a97cfabb95370bdaa2ed548c959d1a5c254ec8ac197223df028465f036cadce2
- Size
  
  164KB
- MD5
  
  52b5e253b8487ccce887c312b1f2f141
- SHA1
  
  ea17c16c6c6f3960c79d61b2aa0d3f0f1813d8bc
- SHA256
  
  a97cfabb95370bdaa2ed548c959d1a5c254ec8ac197223df028465f036cadce2
- SHA512
  
  96525bc4987f1cfcbb5e4bebc8662097596e67f3d46baee2b18fc11f249372cecd2a002c649b835784776bc830358490d07b96d75995f764686c811d7969db48
- SSDEEP
  
  3072:sf0LEDbSNJcsNviT3lX2ywnIVtXSpHlQkT:TIKt6T1G8Xk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2