d897a761e0e192dd69864c21f505450adb83177d73821686fe5d1fa052fba968 | Triage

Sharing

General

Target

d897a761e0e192dd69864c21f505450adb83177d73821686fe5d1fa052fba968
Size

116KB
Sample

221202-18wjaaac38
MD5

d0c4289baf0f78b10dc6d2534eecadd8
SHA1

c3f8fe5b55c1c90eeb38cfafb98d5e0aca6f5f93
SHA256

d897a761e0e192dd69864c21f505450adb83177d73821686fe5d1fa052fba968
SHA512

98e60cc8e4c8c8e95657f9115ba596b29402136f36feeec68f702c48b9d62dc4bf8d7b9164307fa316141e3b03acf768f8a84b8e9a08391aa69d49b99edc25be
SSDEEP

3072:7wn6em4zxz3jWzpDuzUjDzGDxziDbbSbUbNb3bhbwbdsaXCAyDB/zzazhACuzz+d:06bssaXCnzzazhACuzz+cp0

Score

7^/10

Malware Config

Targets

- Target
  
  d897a761e0e192dd69864c21f505450adb83177d73821686fe5d1fa052fba968
- Size
  
  116KB
- MD5
  
  d0c4289baf0f78b10dc6d2534eecadd8
- SHA1
  
  c3f8fe5b55c1c90eeb38cfafb98d5e0aca6f5f93
- SHA256
  
  d897a761e0e192dd69864c21f505450adb83177d73821686fe5d1fa052fba968
- SHA512
  
  98e60cc8e4c8c8e95657f9115ba596b29402136f36feeec68f702c48b9d62dc4bf8d7b9164307fa316141e3b03acf768f8a84b8e9a08391aa69d49b99edc25be
- SSDEEP
  
  3072:7wn6em4zxz3jWzpDuzUjDzGDxziDbbSbUbNb3bhbwbdsaXCAyDB/zzazhACuzz+d:06bssaXCnzzazhACuzz+cp0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2