23af0a626d7da83cfb1352eb7adea4ebf6fba7d8829c8726e81a49c16ae4a804 | Triage

Sharing

General

Target

23af0a626d7da83cfb1352eb7adea4ebf6fba7d8829c8726e81a49c16ae4a804
Size

128KB
Sample

221207-cv9xrafh36
MD5

f0b8c44cd69b197bb1b861028a601bc0
SHA1

b6f230fd3cf2f59fb1c356be7eee0a003b0ceced
SHA256

23af0a626d7da83cfb1352eb7adea4ebf6fba7d8829c8726e81a49c16ae4a804
SHA512

b08b1524b82883a7b43a48bd6f376a6b7145d05cee9094dd88bc5b641e286500211cbab1f54d204d8e9a424f35c78e9eae819f82f0009d7018b8727bcfe2a36a
SSDEEP

1536:w4RI31P0hjtDq00so4pzEACaRBLAoVH1lOQYJ6iibQRVNNhK5a5aeSNg2w4DewJu:HRO0Z8Nso4pzwsHh1hbaEdE2

Score

7^/10

Malware Config

Targets

- Target
  
  23af0a626d7da83cfb1352eb7adea4ebf6fba7d8829c8726e81a49c16ae4a804
- Size
  
  128KB
- MD5
  
  f0b8c44cd69b197bb1b861028a601bc0
- SHA1
  
  b6f230fd3cf2f59fb1c356be7eee0a003b0ceced
- SHA256
  
  23af0a626d7da83cfb1352eb7adea4ebf6fba7d8829c8726e81a49c16ae4a804
- SHA512
  
  b08b1524b82883a7b43a48bd6f376a6b7145d05cee9094dd88bc5b641e286500211cbab1f54d204d8e9a424f35c78e9eae819f82f0009d7018b8727bcfe2a36a
- SSDEEP
  
  1536:w4RI31P0hjtDq00so4pzEACaRBLAoVH1lOQYJ6iibQRVNNhK5a5aeSNg2w4DewJu:HRO0Z8Nso4pzwsHh1hbaEdE2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2