b7dba8749e2cfcf00d5570de1cbc2b993f9117de488b59ad5da6170e37db3355 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b7dba8749e2cfcf00d5570de1cbc2b993f9117de488b59ad5da6170e37db3355
Size

116KB
Sample

221205-lfzmxafc47
MD5

dab031682b77a4fc61bc5ee3bb102b1f
SHA1

56884abfefabd8c281d6b6cd3e4e79958c84cade
SHA256

b7dba8749e2cfcf00d5570de1cbc2b993f9117de488b59ad5da6170e37db3355
SHA512

e8c821fc71bc0b82d3fd2cb5341585b24963b92f00fb400547130cc9681076649f23906b667fc9d3ef985f38f56b1553b70228f2ea451ca9f6b764889c07fbaf
SSDEEP

3072:t9KOOSgzg7ERvFb4Jl8DNGOnvXSziI3TkBuGAc8YhJ1x:t9ZY5vFb4JlKNGs+iUTk4WZhR

Score

7^/10

Malware Config

Targets

- Target
  
  b7dba8749e2cfcf00d5570de1cbc2b993f9117de488b59ad5da6170e37db3355
- Size
  
  116KB
- MD5
  
  dab031682b77a4fc61bc5ee3bb102b1f
- SHA1
  
  56884abfefabd8c281d6b6cd3e4e79958c84cade
- SHA256
  
  b7dba8749e2cfcf00d5570de1cbc2b993f9117de488b59ad5da6170e37db3355
- SHA512
  
  e8c821fc71bc0b82d3fd2cb5341585b24963b92f00fb400547130cc9681076649f23906b667fc9d3ef985f38f56b1553b70228f2ea451ca9f6b764889c07fbaf
- SSDEEP
  
  3072:t9KOOSgzg7ERvFb4Jl8DNGOnvXSziI3TkBuGAc8YhJ1x:t9ZY5vFb4JlKNGs+iUTk4WZhR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2