be23a9fce2d219df66a05b263de14ac9329d50f82127adab450e55a8ef66d667 | Triage

Sharing

General

Target

be23a9fce2d219df66a05b263de14ac9329d50f82127adab450e55a8ef66d667
Size

32KB
Sample

221201-w6p69sge99
MD5

6abd1afb33fbf06e540839c27f8a6e38
SHA1

5718c83713e0bca3693a3d7754d5708207176f72
SHA256

be23a9fce2d219df66a05b263de14ac9329d50f82127adab450e55a8ef66d667
SHA512

11dc2d94894af060072a87041b580a6ee82e3d7513046cc0f26378fac6e3eae1a6cb7524b1074cc16c6d420b02aed0c543934698c012ff020f5479c633113dbc
SSDEEP

384:642gBxKRb1pL5s4VmWsK6M7XLPPmpzC5zL1Ww3a58T+wIqq:6+yLyK6M7LmRozL1WUaWKw

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  be23a9fce2d219df66a05b263de14ac9329d50f82127adab450e55a8ef66d667
- Size
  
  32KB
- MD5
  
  6abd1afb33fbf06e540839c27f8a6e38
- SHA1
  
  5718c83713e0bca3693a3d7754d5708207176f72
- SHA256
  
  be23a9fce2d219df66a05b263de14ac9329d50f82127adab450e55a8ef66d667
- SHA512
  
  11dc2d94894af060072a87041b580a6ee82e3d7513046cc0f26378fac6e3eae1a6cb7524b1074cc16c6d420b02aed0c543934698c012ff020f5479c633113dbc
- SSDEEP
  
  384:642gBxKRb1pL5s4VmWsK6M7XLPPmpzC5zL1Ww3a58T+wIqq:6+yLyK6M7LmRozL1WUaWKw
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2