a6741bcb835dce69bc6d6c1f4ca886be030341206ce94f9d716c937e27c1169c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a6741bcb835dce69bc6d6c1f4ca886be030341206ce94f9d716c937e27c1169c
Size

111KB
Sample

221204-ftam2sdg6v
MD5

223db6bc79034ede41bd38cd74a2c1a6
SHA1

4ce8a139a2b7b90fb14202c43e24ba7c3180ff05
SHA256

a6741bcb835dce69bc6d6c1f4ca886be030341206ce94f9d716c937e27c1169c
SHA512

aa72b4a9be7bfd591a672e0def4f1068e2cb62fb65a35afe824db9ca32c032e918f5a8fbbb4b763d32815999ef606f169268d0e66b4fc0b340b6543c88148122
SSDEEP

3072:nUzqI8u5oAMGTKEEjlDYDlJFsi9z0QFIb:mMGewBg

Score

7^/10

Malware Config

Targets

- Target
  
  a6741bcb835dce69bc6d6c1f4ca886be030341206ce94f9d716c937e27c1169c
- Size
  
  111KB
- MD5
  
  223db6bc79034ede41bd38cd74a2c1a6
- SHA1
  
  4ce8a139a2b7b90fb14202c43e24ba7c3180ff05
- SHA256
  
  a6741bcb835dce69bc6d6c1f4ca886be030341206ce94f9d716c937e27c1169c
- SHA512
  
  aa72b4a9be7bfd591a672e0def4f1068e2cb62fb65a35afe824db9ca32c032e918f5a8fbbb4b763d32815999ef606f169268d0e66b4fc0b340b6543c88148122
- SSDEEP
  
  3072:nUzqI8u5oAMGTKEEjlDYDlJFsi9z0QFIb:mMGewBg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2