ce796c0daef2e4044ec4ee8584c758026d0d63ab4d7824717cc18bcfed250f85 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ce796c0daef2e4044ec4ee8584c758026d0d63ab4d7824717cc18bcfed250f85
Size

60KB
Sample

221201-vy6cvabd66
MD5

59287ad8fa6519e2e630e560fff0049d
SHA1

c6ef939d1c894e3bf214bedd36ef042aadcf5812
SHA256

ce796c0daef2e4044ec4ee8584c758026d0d63ab4d7824717cc18bcfed250f85
SHA512

a0ad5634b31232c7332bc7c4687e35fb108ae5c196126ff1bba75a91e260260a431d297af0f9cc6a3d4065ccfc5d2007e2b0bb737b3841e9deeb3d139cff2b5b
SSDEEP

768:3BZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:3Pdc2inuWdB9r8YXPJY2BmscY

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  ce796c0daef2e4044ec4ee8584c758026d0d63ab4d7824717cc18bcfed250f85
- Size
  
  60KB
- MD5
  
  59287ad8fa6519e2e630e560fff0049d
- SHA1
  
  c6ef939d1c894e3bf214bedd36ef042aadcf5812
- SHA256
  
  ce796c0daef2e4044ec4ee8584c758026d0d63ab4d7824717cc18bcfed250f85
- SHA512
  
  a0ad5634b31232c7332bc7c4687e35fb108ae5c196126ff1bba75a91e260260a431d297af0f9cc6a3d4065ccfc5d2007e2b0bb737b3841e9deeb3d139cff2b5b
- SSDEEP
  
  768:3BZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:3Pdc2inuWdB9r8YXPJY2BmscY
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2