1567c7c7bbac482a2f8041c1cd517a3c7c5715343ef3be2c19ff33ca168935ef | Triage

Sharing

General

Target

1567c7c7bbac482a2f8041c1cd517a3c7c5715343ef3be2c19ff33ca168935ef
Size

32KB
Sample

221202-a5824abg3v
MD5

a4e6c0b279782a88d7bf21bf6cfe5540
SHA1

945a11d42247b5aac77f7611e3f2fecd36814099
SHA256

1567c7c7bbac482a2f8041c1cd517a3c7c5715343ef3be2c19ff33ca168935ef
SHA512

17666d1a35ebb195338ea96e9c29ea2aa6af10898d5be75ad964b75829745eb9c7b8837683329c1dc32591c76de741269fa2c444911500cdb89254d7b44e66aa
SSDEEP

384:2lygqBKRO1pb5s4VmW8qaMrn7GPWZzS5jL1WwKg58:6QzbiqaMr8WhYjL1WpgW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  1567c7c7bbac482a2f8041c1cd517a3c7c5715343ef3be2c19ff33ca168935ef
- Size
  
  32KB
- MD5
  
  a4e6c0b279782a88d7bf21bf6cfe5540
- SHA1
  
  945a11d42247b5aac77f7611e3f2fecd36814099
- SHA256
  
  1567c7c7bbac482a2f8041c1cd517a3c7c5715343ef3be2c19ff33ca168935ef
- SHA512
  
  17666d1a35ebb195338ea96e9c29ea2aa6af10898d5be75ad964b75829745eb9c7b8837683329c1dc32591c76de741269fa2c444911500cdb89254d7b44e66aa
- SSDEEP
  
  384:2lygqBKRO1pb5s4VmW8qaMrn7GPWZzS5jL1WwKg58:6QzbiqaMr8WhYjL1WpgW
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2