a006e853a225f612c0b4040ad8009566717867aa51d5bbc1132770bc299fc665 | Triage

Sharing

General

Target

a006e853a225f612c0b4040ad8009566717867aa51d5bbc1132770bc299fc665
Size

64KB
Sample

221203-e5cq4she2w
MD5

ac54cd6eeca22af61a18f3e1b3eb1039
SHA1

6207be540bdcbd588395fab4779fafb2ea238737
SHA256

a006e853a225f612c0b4040ad8009566717867aa51d5bbc1132770bc299fc665
SHA512

61a3dfc81c645e6e3dfaa291fdb59c1649de739c0ac0e973adfe172f91013add139a921c8e12413f62e4cf6d98746c082e8133ba747fd44cd053e1c738546694
SSDEEP

768:75ZBpuOTZZLjK3o5mVVraDh18Rh+WAz10iAceNretN/QwmGXLljL89QgX:D/xZfDe+Wm0p0t1QlGX5QL

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  a006e853a225f612c0b4040ad8009566717867aa51d5bbc1132770bc299fc665
- Size
  
  64KB
- MD5
  
  ac54cd6eeca22af61a18f3e1b3eb1039
- SHA1
  
  6207be540bdcbd588395fab4779fafb2ea238737
- SHA256
  
  a006e853a225f612c0b4040ad8009566717867aa51d5bbc1132770bc299fc665
- SHA512
  
  61a3dfc81c645e6e3dfaa291fdb59c1649de739c0ac0e973adfe172f91013add139a921c8e12413f62e4cf6d98746c082e8133ba747fd44cd053e1c738546694
- SSDEEP
  
  768:75ZBpuOTZZLjK3o5mVVraDh18Rh+WAz10iAceNretN/QwmGXLljL89QgX:D/xZfDe+Wm0p0t1QlGX5QL
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2