ba980f65ba3792c07de4c0e4ff1a817d21c9b587b5b0990227c7920a1e9e206b | Triage

Sharing

General

Target

ba980f65ba3792c07de4c0e4ff1a817d21c9b587b5b0990227c7920a1e9e206b
Size

28KB
Sample

221204-cx6ccadc91
MD5

cf30cadcc6f0c10f10a0419fda865327
SHA1

7ebf460c9a5eab25a80916921c3c86009f4228f3
SHA256

ba980f65ba3792c07de4c0e4ff1a817d21c9b587b5b0990227c7920a1e9e206b
SHA512

4dd39a99c1098e5bc4be69c735f4ef5109c7eee7359a409e4e46e7bb40a843d50c5a3f16ce4615c250056473553a2dc92baf350a38759cd1b96e143312fe5cfa
SSDEEP

384:tO7wbQPHeUNqrQJdZWUheXM9US61RtDw4nUbQC+:tOxHnfFwzXB4+

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  ba980f65ba3792c07de4c0e4ff1a817d21c9b587b5b0990227c7920a1e9e206b
- Size
  
  28KB
- MD5
  
  cf30cadcc6f0c10f10a0419fda865327
- SHA1
  
  7ebf460c9a5eab25a80916921c3c86009f4228f3
- SHA256
  
  ba980f65ba3792c07de4c0e4ff1a817d21c9b587b5b0990227c7920a1e9e206b
- SHA512
  
  4dd39a99c1098e5bc4be69c735f4ef5109c7eee7359a409e4e46e7bb40a843d50c5a3f16ce4615c250056473553a2dc92baf350a38759cd1b96e143312fe5cfa
- SSDEEP
  
  384:tO7wbQPHeUNqrQJdZWUheXM9US61RtDw4nUbQC+:tOxHnfFwzXB4+
Score

8^/10

evasion
- Disables RegEdit via registry modification
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2