d23a2fe020b6be8d46868438ef6f2af5b92026261118911aabf1ff46503ef5be | Triage

Sharing

General

Target

d23a2fe020b6be8d46868438ef6f2af5b92026261118911aabf1ff46503ef5be
Size

120KB
Sample

221204-fvwa5sdh8s
MD5

7d9fde148556d855db5f0aaf98838858
SHA1

4fa402c61337e1e050f55aec4f2ae1df9aabdb90
SHA256

d23a2fe020b6be8d46868438ef6f2af5b92026261118911aabf1ff46503ef5be
SHA512

dfe3423364073e73d7ea3a8f82ceb829e366b2446266066c74447d6254dac8c3a6be74f739f6d772b95175f0fa5209653c9bf68f9c95de810a3ec5254afecba7
SSDEEP

3072:GkD9YQmSZ3k84l/5UGv7aXj1woCO827xLW:GkDzmSZXW/j7aXj1wBp27x6

Score

8^/10

upx

Malware Config

Targets

- Target
  
  d23a2fe020b6be8d46868438ef6f2af5b92026261118911aabf1ff46503ef5be
- Size
  
  120KB
- MD5
  
  7d9fde148556d855db5f0aaf98838858
- SHA1
  
  4fa402c61337e1e050f55aec4f2ae1df9aabdb90
- SHA256
  
  d23a2fe020b6be8d46868438ef6f2af5b92026261118911aabf1ff46503ef5be
- SHA512
  
  dfe3423364073e73d7ea3a8f82ceb829e366b2446266066c74447d6254dac8c3a6be74f739f6d772b95175f0fa5209653c9bf68f9c95de810a3ec5254afecba7
- SSDEEP
  
  3072:GkD9YQmSZ3k84l/5UGv7aXj1woCO827xLW:GkDzmSZXW/j7aXj1wBp27x6
Score

8^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2