b02d7dc8edce44a91a6e0079787a696ae37d9ac831d90d331f2fd8847fa7426d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b02d7dc8edce44a91a6e0079787a696ae37d9ac831d90d331f2fd8847fa7426d
Size

184KB
Sample

221204-d5jzragg4w
MD5

5e3c1c541e286c21bf99b6830222d852
SHA1

3b23a658c89c307f66b4a67c0338634b49a5235d
SHA256

b02d7dc8edce44a91a6e0079787a696ae37d9ac831d90d331f2fd8847fa7426d
SHA512

34e45bd1c93378fe700eb391292f56c210a36b4b82e9b7099a5dcf6581b0f7d822be93c9db7dd6cf42da79c6a40717a838ec44d0b96fcfc0b2f4cca700f1b14d
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3d:/7BSH8zUB+nGESaaRvoB7FJNndnE

Score

8^/10

Malware Config

Targets

- Target
  
  b02d7dc8edce44a91a6e0079787a696ae37d9ac831d90d331f2fd8847fa7426d
- Size
  
  184KB
- MD5
  
  5e3c1c541e286c21bf99b6830222d852
- SHA1
  
  3b23a658c89c307f66b4a67c0338634b49a5235d
- SHA256
  
  b02d7dc8edce44a91a6e0079787a696ae37d9ac831d90d331f2fd8847fa7426d
- SHA512
  
  34e45bd1c93378fe700eb391292f56c210a36b4b82e9b7099a5dcf6581b0f7d822be93c9db7dd6cf42da79c6a40717a838ec44d0b96fcfc0b2f4cca700f1b14d
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3d:/7BSH8zUB+nGESaaRvoB7FJNndnE
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2