9b0fbfde8af982d1694f52a771e275480477a31f176ea76e25d271dc51a110d0 | Triage

Sharing

General

Target

9b0fbfde8af982d1694f52a771e275480477a31f176ea76e25d271dc51a110d0
Size

46KB
Sample

221206-yan1faag31
MD5

1df37bf80005a70869240317bf28d82e
SHA1

b260cc1b368a4e05966ba10c466f67ff2249afea
SHA256

9b0fbfde8af982d1694f52a771e275480477a31f176ea76e25d271dc51a110d0
SHA512

8b07d00c6dd57ae6a32efd404f36446ac24653e5a9bc6b134b257f7eae07478a493a4f9327d21b672cb02105891772ae925d2692989904d47514e2b3ea7f7082
SSDEEP

768:vMdlEI79nFyqibLT6tjlR31P85Mtz9jlxPrC4GyviTROKw06FGO7vNYPGa:vMd/79n7WLT6t3lP3zBv1vis06AuqPd

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  9b0fbfde8af982d1694f52a771e275480477a31f176ea76e25d271dc51a110d0
- Size
  
  46KB
- MD5
  
  1df37bf80005a70869240317bf28d82e
- SHA1
  
  b260cc1b368a4e05966ba10c466f67ff2249afea
- SHA256
  
  9b0fbfde8af982d1694f52a771e275480477a31f176ea76e25d271dc51a110d0
- SHA512
  
  8b07d00c6dd57ae6a32efd404f36446ac24653e5a9bc6b134b257f7eae07478a493a4f9327d21b672cb02105891772ae925d2692989904d47514e2b3ea7f7082
- SSDEEP
  
  768:vMdlEI79nFyqibLT6tjlR31P85Mtz9jlxPrC4GyviTROKw06FGO7vNYPGa:vMd/79n7WLT6t3lP3zBv1vis06AuqPd
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2