1ef782141d6810eb4a6ef313b378721e5da97fa5c43d7fb19e0fdcfbb8a40175 | Triage

Sharing

General

Target

1ef782141d6810eb4a6ef313b378721e5da97fa5c43d7fb19e0fdcfbb8a40175
Size

76KB
Sample

221203-x74ayshd38
MD5

174d3e5f3990f1e1641bd998ca04a600
SHA1

7b52bb324ddf5f7545a4cbbd4e93baf63fa57b94
SHA256

1ef782141d6810eb4a6ef313b378721e5da97fa5c43d7fb19e0fdcfbb8a40175
SHA512

89f8b699d0801cb1d29b0afb39efe7e08024b798939ea68b2da60be9067cc9db72d682e59ff4e0011eb5a4af5d1e799b1bc75fbe1cbca13292187323c612882a
SSDEEP

1536:MCx2gT9ZUDG3BYmmUbax2WOVKqpvgwr8hB/pT01fK:KDkYDUbax2W4X6/pT0Z

Score

7^/10

Malware Config

Targets

- Target
  
  1ef782141d6810eb4a6ef313b378721e5da97fa5c43d7fb19e0fdcfbb8a40175
- Size
  
  76KB
- MD5
  
  174d3e5f3990f1e1641bd998ca04a600
- SHA1
  
  7b52bb324ddf5f7545a4cbbd4e93baf63fa57b94
- SHA256
  
  1ef782141d6810eb4a6ef313b378721e5da97fa5c43d7fb19e0fdcfbb8a40175
- SHA512
  
  89f8b699d0801cb1d29b0afb39efe7e08024b798939ea68b2da60be9067cc9db72d682e59ff4e0011eb5a4af5d1e799b1bc75fbe1cbca13292187323c612882a
- SSDEEP
  
  1536:MCx2gT9ZUDG3BYmmUbax2WOVKqpvgwr8hB/pT01fK:KDkYDUbax2W4X6/pT0Z
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2