bea6886a117f3167ec0bf8437689c1a0f78dcc585a5e028118f84681d2e7f6cb | Triage

Sharing

General

Target

bea6886a117f3167ec0bf8437689c1a0f78dcc585a5e028118f84681d2e7f6cb
Size

67KB
Sample

221204-fek58sgf43
MD5

77076be745f8114a2d8e6f3418187c6c
SHA1

a1afbf7144b2d94424fe97280bedc335a7c7ac54
SHA256

bea6886a117f3167ec0bf8437689c1a0f78dcc585a5e028118f84681d2e7f6cb
SHA512

b33db121b8184c789d8610715383eda5e0bcf05b39090e35773e5b222c9233208196c8de126e1ab1f4ffd1c6f1f128ae6e7b96d31be66ece898973b7c1b2b5c2
SSDEEP

1536:2wetP10SuUdZuhRfUwvw37j/XrTnEmgIFlkFVtJ/G:2vc0ZupIrj/XzD4d/G

Score

7^/10

Malware Config

Targets

- Target
  
  bea6886a117f3167ec0bf8437689c1a0f78dcc585a5e028118f84681d2e7f6cb
- Size
  
  67KB
- MD5
  
  77076be745f8114a2d8e6f3418187c6c
- SHA1
  
  a1afbf7144b2d94424fe97280bedc335a7c7ac54
- SHA256
  
  bea6886a117f3167ec0bf8437689c1a0f78dcc585a5e028118f84681d2e7f6cb
- SHA512
  
  b33db121b8184c789d8610715383eda5e0bcf05b39090e35773e5b222c9233208196c8de126e1ab1f4ffd1c6f1f128ae6e7b96d31be66ece898973b7c1b2b5c2
- SSDEEP
  
  1536:2wetP10SuUdZuhRfUwvw37j/XrTnEmgIFlkFVtJ/G:2vc0ZupIrj/XzD4d/G
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2