b05d55713d5bc7795940621be02cdd8875d9e201001119a34f9149b27c5af3dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b05d55713d5bc7795940621be02cdd8875d9e201001119a34f9149b27c5af3dd
Size

159KB
Sample

221204-b9dbnafe88
MD5

81a7863dfba7039e8feb7c4ab3ab7c57
SHA1

e9b032cd43093d625fd14f08ec66cad89056aa5c
SHA256

b05d55713d5bc7795940621be02cdd8875d9e201001119a34f9149b27c5af3dd
SHA512

13cd4e9db496ba9d48811fb4f87e3449a0817b2899b0ec7fa7fa3cc755d99af3bce62f21199fb254ae0ea195fb5e077848a5f655471c0c6f253a342c6e2f6d39
SSDEEP

3072:thBMINbZ8bHsz1uDPN82b4qiHLRnFRslWKp:thBMVMo/ZiHlFR9Kp

Score

7^/10

Malware Config

Targets

- Target
  
  b05d55713d5bc7795940621be02cdd8875d9e201001119a34f9149b27c5af3dd
- Size
  
  159KB
- MD5
  
  81a7863dfba7039e8feb7c4ab3ab7c57
- SHA1
  
  e9b032cd43093d625fd14f08ec66cad89056aa5c
- SHA256
  
  b05d55713d5bc7795940621be02cdd8875d9e201001119a34f9149b27c5af3dd
- SHA512
  
  13cd4e9db496ba9d48811fb4f87e3449a0817b2899b0ec7fa7fa3cc755d99af3bce62f21199fb254ae0ea195fb5e077848a5f655471c0c6f253a342c6e2f6d39
- SSDEEP
  
  3072:thBMINbZ8bHsz1uDPN82b4qiHLRnFRslWKp:thBMVMo/ZiHlFR9Kp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2