f3845d737a61c7f6c6fd98b483e858db04d688e5bbb2698924a6fec589218b98 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f3845d737a61c7f6c6fd98b483e858db04d688e5bbb2698924a6fec589218b98
Size

91KB
Sample

221207-bgrnksbb94
MD5

b8add1537fccbe6d8e9350bedb703ec1
SHA1

f5f46048791b383252acb5d4e315ff1433f80188
SHA256

f3845d737a61c7f6c6fd98b483e858db04d688e5bbb2698924a6fec589218b98
SHA512

f0e8e085fc5191b8e6500045bdfbaf9d43e07fa73f6577dc27f649ee0242f92934fe51b091845179da78bad33869e9579cfab08ec8c393bf0e443028ccf0e0d2
SSDEEP

1536:alqmbxDIFoprhcZdmF8JC3IDS2E3YHfDqqr/XaNNSykFI+L:alt9DL9MdmYQIeIHOqr/nykFIq

Score

7^/10

Malware Config

Targets

- Target
  
  f3845d737a61c7f6c6fd98b483e858db04d688e5bbb2698924a6fec589218b98
- Size
  
  91KB
- MD5
  
  b8add1537fccbe6d8e9350bedb703ec1
- SHA1
  
  f5f46048791b383252acb5d4e315ff1433f80188
- SHA256
  
  f3845d737a61c7f6c6fd98b483e858db04d688e5bbb2698924a6fec589218b98
- SHA512
  
  f0e8e085fc5191b8e6500045bdfbaf9d43e07fa73f6577dc27f649ee0242f92934fe51b091845179da78bad33869e9579cfab08ec8c393bf0e443028ccf0e0d2
- SSDEEP
  
  1536:alqmbxDIFoprhcZdmF8JC3IDS2E3YHfDqqr/XaNNSykFI+L:alt9DL9MdmYQIeIHOqr/nykFIq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2