c3343a8ebe75a09c133b96314fd7b8f2b73675f65040d301f3731ffef5f0ea41 | Triage

Sharing

General

Target

c3343a8ebe75a09c133b96314fd7b8f2b73675f65040d301f3731ffef5f0ea41
Size

113KB
Sample

221207-ede26afb3x
MD5

f23161c62cd046c49827e7e42e873ede
SHA1

38f697836b44c0774d389db6db83452f79f36158
SHA256

c3343a8ebe75a09c133b96314fd7b8f2b73675f65040d301f3731ffef5f0ea41
SHA512

a6edc684e5f51980d569089c829e0844b2c9044d0255728c592375d3b52c4e00618312cb5c62d9b58c51a715ee3b0594c7c7c21e194b944364535a9ed958cf16
SSDEEP

3072:Qirat2b/8fnrxMcfm7PHmzOOU+McCNXHFh:wZScOOOJ7cSX

Score

7^/10

Malware Config

Targets

- Target
  
  c3343a8ebe75a09c133b96314fd7b8f2b73675f65040d301f3731ffef5f0ea41
- Size
  
  113KB
- MD5
  
  f23161c62cd046c49827e7e42e873ede
- SHA1
  
  38f697836b44c0774d389db6db83452f79f36158
- SHA256
  
  c3343a8ebe75a09c133b96314fd7b8f2b73675f65040d301f3731ffef5f0ea41
- SHA512
  
  a6edc684e5f51980d569089c829e0844b2c9044d0255728c592375d3b52c4e00618312cb5c62d9b58c51a715ee3b0594c7c7c21e194b944364535a9ed958cf16
- SSDEEP
  
  3072:Qirat2b/8fnrxMcfm7PHmzOOU+McCNXHFh:wZScOOOJ7cSX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2