af1e6083e170e87014f97fe283e82f4bfd2be37c4ebbaf164b3d8b3ef994633f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af1e6083e170e87014f97fe283e82f4bfd2be37c4ebbaf164b3d8b3ef994633f
Size

191KB
Sample

221204-qkxrbsga3t
MD5

663abb3f22aea24135b16f2c81e54873
SHA1

ae7a030f11acc3f8e560bb5ac9f312ea587a1166
SHA256

af1e6083e170e87014f97fe283e82f4bfd2be37c4ebbaf164b3d8b3ef994633f
SHA512

9837f61e81fcf961bc04b539251dc651a4a2f7f9b12e15794e6250bb970bd3488a92dfa74b57e04c9589ceb05c16e06f1848ebf7903418988e709c2be9745609
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dE:HAVySV1eY4k437d+4wkTHdS2c

Score

7^/10

Malware Config

Targets

- Target
  
  af1e6083e170e87014f97fe283e82f4bfd2be37c4ebbaf164b3d8b3ef994633f
- Size
  
  191KB
- MD5
  
  663abb3f22aea24135b16f2c81e54873
- SHA1
  
  ae7a030f11acc3f8e560bb5ac9f312ea587a1166
- SHA256
  
  af1e6083e170e87014f97fe283e82f4bfd2be37c4ebbaf164b3d8b3ef994633f
- SHA512
  
  9837f61e81fcf961bc04b539251dc651a4a2f7f9b12e15794e6250bb970bd3488a92dfa74b57e04c9589ceb05c16e06f1848ebf7903418988e709c2be9745609
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dE:HAVySV1eY4k437d+4wkTHdS2c
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2