affa6b4537d5bd106ece7891a8d05553d4935dc9a32c5caa9be1fe7e8d26a8ea | Triage

Sharing

General

Target

affa6b4537d5bd106ece7891a8d05553d4935dc9a32c5caa9be1fe7e8d26a8ea
Size

184KB
Sample

221204-f97mqaba36
MD5

93eac4b75daf487f01b0ae8481200b08
SHA1

b910117319134a109bebef99ea98813f6a1f3755
SHA256

affa6b4537d5bd106ece7891a8d05553d4935dc9a32c5caa9be1fe7e8d26a8ea
SHA512

737d5af61a45152680df34b2c2267345cfbc29eee03edb3cfcb4b0756dc85f2fae2e0404bed1f944a68a7b2211c20e20db3158a34d01723de106a95ec6ec20b7
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3r:/7BSH8zUB+nGESaaRvoB7FJNndn2

Score

8^/10

Malware Config

Targets

- Target
  
  affa6b4537d5bd106ece7891a8d05553d4935dc9a32c5caa9be1fe7e8d26a8ea
- Size
  
  184KB
- MD5
  
  93eac4b75daf487f01b0ae8481200b08
- SHA1
  
  b910117319134a109bebef99ea98813f6a1f3755
- SHA256
  
  affa6b4537d5bd106ece7891a8d05553d4935dc9a32c5caa9be1fe7e8d26a8ea
- SHA512
  
  737d5af61a45152680df34b2c2267345cfbc29eee03edb3cfcb4b0756dc85f2fae2e0404bed1f944a68a7b2211c20e20db3158a34d01723de106a95ec6ec20b7
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3r:/7BSH8zUB+nGESaaRvoB7FJNndn2
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2