7294eeaaff759010bf168e9ed6dee1ef782b295903cbc1c8d5683532de67bca6 | Triage

Sharing

General

Target

7294eeaaff759010bf168e9ed6dee1ef782b295903cbc1c8d5683532de67bca6
Size

185KB
Sample

221202-18hbnaab96
MD5

0e22dc4ec23c2ad3e944ebe6b52a49f5
SHA1

ce8466ca405cc6951e0a5fd7f5623763fb890d87
SHA256

7294eeaaff759010bf168e9ed6dee1ef782b295903cbc1c8d5683532de67bca6
SHA512

b1d87a5448b76caddb89ff116516fc2ea06341b9998152b7cfad547e941588dae72db69f538b42874ec3340d66270d33d3c7519cdf21088b37bd12898b978845
SSDEEP

3072:Yoaqm6uw0n+amEoK4OG01qhzJ5yMGh6DGj4t5u7LAzGtEfo6ta6dDKKEp7xz1S+d:YRqmpp+amNOGokzLyM9tsLAitQo6tzON

Score

7^/10

Malware Config

Targets

- Target
  
  7294eeaaff759010bf168e9ed6dee1ef782b295903cbc1c8d5683532de67bca6
- Size
  
  185KB
- MD5
  
  0e22dc4ec23c2ad3e944ebe6b52a49f5
- SHA1
  
  ce8466ca405cc6951e0a5fd7f5623763fb890d87
- SHA256
  
  7294eeaaff759010bf168e9ed6dee1ef782b295903cbc1c8d5683532de67bca6
- SHA512
  
  b1d87a5448b76caddb89ff116516fc2ea06341b9998152b7cfad547e941588dae72db69f538b42874ec3340d66270d33d3c7519cdf21088b37bd12898b978845
- SSDEEP
  
  3072:Yoaqm6uw0n+amEoK4OG01qhzJ5yMGh6DGj4t5u7LAzGtEfo6ta6dDKKEp7xz1S+d:YRqmpp+amNOGokzLyM9tsLAitQo6tzON
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2