b030fc2608c29f3de4c7d0f232e03fa6df3c58ce263179db1b6abbb3b8e02c25 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b030fc2608c29f3de4c7d0f232e03fa6df3c58ce263179db1b6abbb3b8e02c25
Size

191KB
Sample

221204-d1k19agd41
MD5

4aee65f61514549743cdcea72a327c69
SHA1

ffb1414392b1e3fc6c9720e3b47910f3f9a1edb0
SHA256

b030fc2608c29f3de4c7d0f232e03fa6df3c58ce263179db1b6abbb3b8e02c25
SHA512

fa17b2485baf4c1da9ef7c6e90ef7ed8af21a2fd13cbe181607d54a384f36e7fa63f3d7e739b0aa3483dea42434a267cb83fb995bcfa22e8371c8554854f3aee
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dY:HAVySV1eY4k437d+4wkTHdS2g

Score

7^/10

Malware Config

Targets

- Target
  
  b030fc2608c29f3de4c7d0f232e03fa6df3c58ce263179db1b6abbb3b8e02c25
- Size
  
  191KB
- MD5
  
  4aee65f61514549743cdcea72a327c69
- SHA1
  
  ffb1414392b1e3fc6c9720e3b47910f3f9a1edb0
- SHA256
  
  b030fc2608c29f3de4c7d0f232e03fa6df3c58ce263179db1b6abbb3b8e02c25
- SHA512
  
  fa17b2485baf4c1da9ef7c6e90ef7ed8af21a2fd13cbe181607d54a384f36e7fa63f3d7e739b0aa3483dea42434a267cb83fb995bcfa22e8371c8554854f3aee
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dY:HAVySV1eY4k437d+4wkTHdS2g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2