9b2635edf1c36d047d4e329e64a88a7dcc29388cde4dbcb6368250d8121acc40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9b2635edf1c36d047d4e329e64a88a7dcc29388cde4dbcb6368250d8121acc40
Size

95KB
Sample

221207-bhm2sabc72
MD5

df3ec92677369fe4ab0dcafb76c60de7
SHA1

eea2b568658fe4d67d334cc3e2de7d9b13f6f671
SHA256

9b2635edf1c36d047d4e329e64a88a7dcc29388cde4dbcb6368250d8121acc40
SHA512

290da0a1708a689c5e1312f830b8f29d9d5299a1ecbb6e39c0b56bba563ad43d7b5f1db5edcb2e617cbfbc08d9f7e677315e578f2fd2a95599f1ccb24f8c7e81
SSDEEP

1536:YT3KuCzqahhTbcG0yZnFi0Seu9+2aLWdaAQzqj3D7QpHoSp7wpvFIy:1c0S/9wCdaxzqj3DEeSCpvFIy

Score

7^/10

Malware Config

Targets

- Target
  
  9b2635edf1c36d047d4e329e64a88a7dcc29388cde4dbcb6368250d8121acc40
- Size
  
  95KB
- MD5
  
  df3ec92677369fe4ab0dcafb76c60de7
- SHA1
  
  eea2b568658fe4d67d334cc3e2de7d9b13f6f671
- SHA256
  
  9b2635edf1c36d047d4e329e64a88a7dcc29388cde4dbcb6368250d8121acc40
- SHA512
  
  290da0a1708a689c5e1312f830b8f29d9d5299a1ecbb6e39c0b56bba563ad43d7b5f1db5edcb2e617cbfbc08d9f7e677315e578f2fd2a95599f1ccb24f8c7e81
- SSDEEP
  
  1536:YT3KuCzqahhTbcG0yZnFi0Seu9+2aLWdaAQzqj3D7QpHoSp7wpvFIy:1c0S/9wCdaxzqj3DEeSCpvFIy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2