ac4437fc12140d07ae619535af3ec6f3b407a0bea058e7839f2e126ea974123c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ac4437fc12140d07ae619535af3ec6f3b407a0bea058e7839f2e126ea974123c
Size

22KB
Sample

221206-j99zmadc31
MD5

9aa5c565b96ab7c4006735a3e584b9ee
SHA1

4f8e7532c5a346aa06adcc7d2face895a60e3284
SHA256

ac4437fc12140d07ae619535af3ec6f3b407a0bea058e7839f2e126ea974123c
SHA512

ce35c2ddc35aa736958affa5f4c22d45dd199ce5fb7468caa462bfac743c476bf02fd954e7d23a1c2fe9f9ac5e47374d8136ff15c869607ab912a82346a7fb4e
SSDEEP

384:yNkaK/IIEtX+1HnJVkblhGKhwjU0SrMpTY4Rg1bGw+NGGH:EhSHJNEEU0GMp/Qn+

Score

7^/10

Malware Config

Targets

- Target
  
  ac4437fc12140d07ae619535af3ec6f3b407a0bea058e7839f2e126ea974123c
- Size
  
  22KB
- MD5
  
  9aa5c565b96ab7c4006735a3e584b9ee
- SHA1
  
  4f8e7532c5a346aa06adcc7d2face895a60e3284
- SHA256
  
  ac4437fc12140d07ae619535af3ec6f3b407a0bea058e7839f2e126ea974123c
- SHA512
  
  ce35c2ddc35aa736958affa5f4c22d45dd199ce5fb7468caa462bfac743c476bf02fd954e7d23a1c2fe9f9ac5e47374d8136ff15c869607ab912a82346a7fb4e
- SSDEEP
  
  384:yNkaK/IIEtX+1HnJVkblhGKhwjU0SrMpTY4Rg1bGw+NGGH:EhSHJNEEU0GMp/Qn+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2