af2cdcda78967d7ca5eba57ab4d2b35cee1e53137a36480625f963b6b48f5fc0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af2cdcda78967d7ca5eba57ab4d2b35cee1e53137a36480625f963b6b48f5fc0
Size

191KB
Sample

221204-p48ghaef2x
MD5

8105f0cd596083c32ed1a604900a05eb
SHA1

b2e8312a7af6eda68ec20d0db50ac7912d4f3892
SHA256

af2cdcda78967d7ca5eba57ab4d2b35cee1e53137a36480625f963b6b48f5fc0
SHA512

b5469bb12e8f6ea372c90d277ab54547c58e7d7489f54b6e2749102c990e52beb35c36ca285a745b352537d11f80e1277787ee8cc609a844bfd7641820307b8d
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0di:HAVySV1eY4k437d+4wkTHdS2q

Score

7^/10

Malware Config

Targets

- Target
  
  af2cdcda78967d7ca5eba57ab4d2b35cee1e53137a36480625f963b6b48f5fc0
- Size
  
  191KB
- MD5
  
  8105f0cd596083c32ed1a604900a05eb
- SHA1
  
  b2e8312a7af6eda68ec20d0db50ac7912d4f3892
- SHA256
  
  af2cdcda78967d7ca5eba57ab4d2b35cee1e53137a36480625f963b6b48f5fc0
- SHA512
  
  b5469bb12e8f6ea372c90d277ab54547c58e7d7489f54b6e2749102c990e52beb35c36ca285a745b352537d11f80e1277787ee8cc609a844bfd7641820307b8d
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0di:HAVySV1eY4k437d+4wkTHdS2q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2