94fd2ece3a373167d4b7da6eea1b6819b7bc3ed865e304c4647225341c79662e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

94fd2ece3a373167d4b7da6eea1b6819b7bc3ed865e304c4647225341c79662e
Size

128KB
Sample

221205-lplseaga75
MD5

df385ff4541f334df4de1a6640fb95f7
SHA1

7b422cbbd5bf267665e8a689bea0c6fbae04985a
SHA256

94fd2ece3a373167d4b7da6eea1b6819b7bc3ed865e304c4647225341c79662e
SHA512

0da1d7c9e6c230e08c0e6b994f0792d2cf163601fad91ad5ed8a7b18c9478cabc6f9eac931279d10b597ab5445805ac3f955a1de79902b40bd3faee9d258baa8
SSDEEP

3072:mih22PhXQIX16EB3+CMpFd4d4duDJ/Hoi4dED:mih2AhAWoBpF+jJR

Score

7^/10

Malware Config

Targets

- Target
  
  94fd2ece3a373167d4b7da6eea1b6819b7bc3ed865e304c4647225341c79662e
- Size
  
  128KB
- MD5
  
  df385ff4541f334df4de1a6640fb95f7
- SHA1
  
  7b422cbbd5bf267665e8a689bea0c6fbae04985a
- SHA256
  
  94fd2ece3a373167d4b7da6eea1b6819b7bc3ed865e304c4647225341c79662e
- SHA512
  
  0da1d7c9e6c230e08c0e6b994f0792d2cf163601fad91ad5ed8a7b18c9478cabc6f9eac931279d10b597ab5445805ac3f955a1de79902b40bd3faee9d258baa8
- SSDEEP
  
  3072:mih22PhXQIX16EB3+CMpFd4d4duDJ/Hoi4dED:mih2AhAWoBpF+jJR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2