ce3e910209c1fedd223fc7ca4984018c114304c8c288f4a4be9baf5c3f67dd67 | Triage

Sharing

General

Target

ce3e910209c1fedd223fc7ca4984018c114304c8c288f4a4be9baf5c3f67dd67
Size

64KB
Sample

221202-vh6nnsff35
MD5

c26eb81672b0dd4f211be226e74e0337
SHA1

82f216469ca100811000e44dbb0ac141c0c07b67
SHA256

ce3e910209c1fedd223fc7ca4984018c114304c8c288f4a4be9baf5c3f67dd67
SHA512

79b6e5b394cd1d1c71d764e6c47685e536cbfe6fe86cf139956f9e038f8a2d6ad10b1afcaf9580874515d204e1fdd6cbe94636f13bb87e5f4451f7e1c11033e5
SSDEEP

768:w2biHHAYsX1pp/CcSBgEiAhB+H0mnTEDF5TvysTxygqTrSPprbyvqCqgEwtELt+F:wamHFs79DnIY3Ns9Nrb5CCIl

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  ce3e910209c1fedd223fc7ca4984018c114304c8c288f4a4be9baf5c3f67dd67
- Size
  
  64KB
- MD5
  
  c26eb81672b0dd4f211be226e74e0337
- SHA1
  
  82f216469ca100811000e44dbb0ac141c0c07b67
- SHA256
  
  ce3e910209c1fedd223fc7ca4984018c114304c8c288f4a4be9baf5c3f67dd67
- SHA512
  
  79b6e5b394cd1d1c71d764e6c47685e536cbfe6fe86cf139956f9e038f8a2d6ad10b1afcaf9580874515d204e1fdd6cbe94636f13bb87e5f4451f7e1c11033e5
- SSDEEP
  
  768:w2biHHAYsX1pp/CcSBgEiAhB+H0mnTEDF5TvysTxygqTrSPprbyvqCqgEwtELt+F:wamHFs79DnIY3Ns9Nrb5CCIl
Score

8^/10

evasion
- Stops running service(s)
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

behavioral2