c0e4c4490a0f1e6b8592fcdf4982a77bb07fb29a3737ea9b2acd85245421a041 | Triage

Sharing

General

Target

c0e4c4490a0f1e6b8592fcdf4982a77bb07fb29a3737ea9b2acd85245421a041
Size

92KB
Sample

221205-zy3n6sba6v
MD5

ea3c2d3aedba55d2799e1f878fc87ca6
SHA1

05b5e7d38093f3bca74a53c24608a6f12c0a175d
SHA256

c0e4c4490a0f1e6b8592fcdf4982a77bb07fb29a3737ea9b2acd85245421a041
SHA512

c686f40797d7b8cb355ab076bddf7fd3796c5de7de58854bae63247f53ab53edb73b1a2ec5335efba0c5620c167fb2457c0bcfb1a27133f1e89c675f95e6b51f
SSDEEP

768:f/Go0XA0MK3EZ8ji9lqQZAS55CmESUNwv352s0gNatckXb7PpLWOLqpr40ySCq:f/GoN0MKlji9SCoSUNwItjX/Ph0fJ

Score

7^/10

Malware Config

Targets

- Target
  
  c0e4c4490a0f1e6b8592fcdf4982a77bb07fb29a3737ea9b2acd85245421a041
- Size
  
  92KB
- MD5
  
  ea3c2d3aedba55d2799e1f878fc87ca6
- SHA1
  
  05b5e7d38093f3bca74a53c24608a6f12c0a175d
- SHA256
  
  c0e4c4490a0f1e6b8592fcdf4982a77bb07fb29a3737ea9b2acd85245421a041
- SHA512
  
  c686f40797d7b8cb355ab076bddf7fd3796c5de7de58854bae63247f53ab53edb73b1a2ec5335efba0c5620c167fb2457c0bcfb1a27133f1e89c675f95e6b51f
- SSDEEP
  
  768:f/Go0XA0MK3EZ8ji9lqQZAS55CmESUNwv352s0gNatckXb7PpLWOLqpr40ySCq:f/GoN0MKlji9SCoSUNwItjX/Ph0fJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2