49363f08a18524030e6c1ab7d036d251ec00624567f3c1a34599ec31760ea6e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49363f08a18524030e6c1ab7d036d251ec00624567f3c1a34599ec31760ea6e7
Size

1.9MB
Sample

221203-s2jbdach26
MD5

2f50f0523060c46809128782cce3a38e
SHA1

0f0ce0288098d465123c8749ac51acce8dbf054f
SHA256

49363f08a18524030e6c1ab7d036d251ec00624567f3c1a34599ec31760ea6e7
SHA512

fafdaa82a9f30c23d616b66f50df6f23a6a5d7fb242016bb606190ec5bd55f40bc4713f7d17b73c4ce5bac4d6152058b9af73d890be5f77c41e05c9ce9bc086c
SSDEEP

49152:NsP/n+AVOIlKSX5iZmyklvHH8R8nqTfw7T2/bD4LWnhy3s03d98:u+GwUWm3RSia/P4LWhy3sMi

Score

7^/10

Malware Config

Targets

- Target
  
  49363f08a18524030e6c1ab7d036d251ec00624567f3c1a34599ec31760ea6e7
- Size
  
  1.9MB
- MD5
  
  2f50f0523060c46809128782cce3a38e
- SHA1
  
  0f0ce0288098d465123c8749ac51acce8dbf054f
- SHA256
  
  49363f08a18524030e6c1ab7d036d251ec00624567f3c1a34599ec31760ea6e7
- SHA512
  
  fafdaa82a9f30c23d616b66f50df6f23a6a5d7fb242016bb606190ec5bd55f40bc4713f7d17b73c4ce5bac4d6152058b9af73d890be5f77c41e05c9ce9bc086c
- SSDEEP
  
  49152:NsP/n+AVOIlKSX5iZmyklvHH8R8nqTfw7T2/bD4LWnhy3s03d98:u+GwUWm3RSia/P4LWhy3sMi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1