c8f459a8403453abbab65d1a1d1a9345826df5c51d8ca091ae85f4ddc9205104 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c8f459a8403453abbab65d1a1d1a9345826df5c51d8ca091ae85f4ddc9205104
Size

40KB
Sample

221205-zy9sgsga79
MD5

3de53758fbf838037bce02d3cc9e7f2e
SHA1

4f90a01a4fcfeb5bd70c9d09fb89bef915516158
SHA256

c8f459a8403453abbab65d1a1d1a9345826df5c51d8ca091ae85f4ddc9205104
SHA512

90b090e22dad0bb3a969b6298c3d634f9cc272b52db869e129f7717def7cb76dc842f8a6d6684d1156da97a937f0c70528458e919b4d702bb1daa41922d286ae
SSDEEP

384:7HsFwRVOTtTa4T/SAM3T63KqU/kdzamVSBE+isJef9EoltS1wV3jig1wmVM0+r1x:7H6wRVOxibDieI2SSDeJD7jScmf

Score

7^/10

Malware Config

Targets

- Target
  
  c8f459a8403453abbab65d1a1d1a9345826df5c51d8ca091ae85f4ddc9205104
- Size
  
  40KB
- MD5
  
  3de53758fbf838037bce02d3cc9e7f2e
- SHA1
  
  4f90a01a4fcfeb5bd70c9d09fb89bef915516158
- SHA256
  
  c8f459a8403453abbab65d1a1d1a9345826df5c51d8ca091ae85f4ddc9205104
- SHA512
  
  90b090e22dad0bb3a969b6298c3d634f9cc272b52db869e129f7717def7cb76dc842f8a6d6684d1156da97a937f0c70528458e919b4d702bb1daa41922d286ae
- SSDEEP
  
  384:7HsFwRVOTtTa4T/SAM3T63KqU/kdzamVSBE+isJef9EoltS1wV3jig1wmVM0+r1x:7H6wRVOxibDieI2SSDeJD7jScmf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2