b0714d7ace53dad87de76f853df73f0b529a7c6321634e40cf5235dc5de59f0b | Triage

Sharing

General

Target

b0714d7ace53dad87de76f853df73f0b529a7c6321634e40cf5235dc5de59f0b
Size

113KB
Sample

221204-jlqwvahh76
MD5

f055e1891a696cdb9ab749ea41360da0
SHA1

0f5cbcc010e59994856ec86d0dedf59a1b8ee429
SHA256

b0714d7ace53dad87de76f853df73f0b529a7c6321634e40cf5235dc5de59f0b
SHA512

9a79bea694cac5058a0754ee4e3872e6d82084812286cb81598a0fe2032ac0ed6b72d318ac119ee69de822523cdc83c0bddd998503cfff13b0b0d11af612e1c4
SSDEEP

3072:wirat2b/8fnrxMcfm7PHmzOOU+McCNXHFh:QZScOOOJ7cSX

Score

7^/10

Malware Config

Targets

- Target
  
  b0714d7ace53dad87de76f853df73f0b529a7c6321634e40cf5235dc5de59f0b
- Size
  
  113KB
- MD5
  
  f055e1891a696cdb9ab749ea41360da0
- SHA1
  
  0f5cbcc010e59994856ec86d0dedf59a1b8ee429
- SHA256
  
  b0714d7ace53dad87de76f853df73f0b529a7c6321634e40cf5235dc5de59f0b
- SHA512
  
  9a79bea694cac5058a0754ee4e3872e6d82084812286cb81598a0fe2032ac0ed6b72d318ac119ee69de822523cdc83c0bddd998503cfff13b0b0d11af612e1c4
- SSDEEP
  
  3072:wirat2b/8fnrxMcfm7PHmzOOU+McCNXHFh:QZScOOOJ7cSX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2