e1c66a82c640050fc356360da5bc6258f88341c031c725fa9e09f7f5793f2391 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1c66a82c640050fc356360da5bc6258f88341c031c725fa9e09f7f5793f2391
Size

232KB
Sample

221203-xg69xsag4w
MD5

4e51bfc7f1f1a362a9c0bdb9655b0643
SHA1

892ff151ecd6617cbb9d4b9f9edbf94bd4093722
SHA256

e1c66a82c640050fc356360da5bc6258f88341c031c725fa9e09f7f5793f2391
SHA512

61ee2347647b2d7602e40ec858edc1e9a24cdedf9de8d8e3136d193f174135579051ff41b3e0157e6fcf85d59ace0715f74629e820de36e7e90a50a97555943e
SSDEEP

3072:HJgkavfMkDGC+8ZMfaKiY/OfgpOsYmXdJCD1uR8mVGPghD+lTm:HJIfYCbZMyIOgJYmR8mVGP9A

Score

7^/10

Malware Config

Targets

- Target
  
  e1c66a82c640050fc356360da5bc6258f88341c031c725fa9e09f7f5793f2391
- Size
  
  232KB
- MD5
  
  4e51bfc7f1f1a362a9c0bdb9655b0643
- SHA1
  
  892ff151ecd6617cbb9d4b9f9edbf94bd4093722
- SHA256
  
  e1c66a82c640050fc356360da5bc6258f88341c031c725fa9e09f7f5793f2391
- SHA512
  
  61ee2347647b2d7602e40ec858edc1e9a24cdedf9de8d8e3136d193f174135579051ff41b3e0157e6fcf85d59ace0715f74629e820de36e7e90a50a97555943e
- SSDEEP
  
  3072:HJgkavfMkDGC+8ZMfaKiY/OfgpOsYmXdJCD1uR8mVGPghD+lTm:HJIfYCbZMyIOgJYmR8mVGP9A
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2