f2a5023cd559597a1b70a7e02345fb9c80b740377fcf7341d5df2d462efafda5 | Triage

Sharing

General

Target

rutserv.exe
Size

19.8MB
Sample

230201-thaessce2y
MD5

31c0bafc3f6e6c7322a7a32ac1bd87da
SHA1

42fd1a41e1eef5998de674ec068c702f1ee3b4f3
SHA256

f2a5023cd559597a1b70a7e02345fb9c80b740377fcf7341d5df2d462efafda5
SHA512

ab8dcda75a2e9c4d7dfcc23e76b3ca76b4ec5f1fbf24007bf0e9707de17461c5016ec9005dae3f62e34f586452aa145871d371536572365b35bf33b43a8d24ab
SSDEEP

196608:QEY5GwRkSKyuh6XVocAbyeEA183ZaOp6lAFywgK1HD3hHi9J:QEY5GwqMrWEAG6lA0lK1HD3JI

Score

7^/10

Malware Config

Targets

- Target
  
  rutserv.exe
- Size
  
  19.8MB
- MD5
  
  31c0bafc3f6e6c7322a7a32ac1bd87da
- SHA1
  
  42fd1a41e1eef5998de674ec068c702f1ee3b4f3
- SHA256
  
  f2a5023cd559597a1b70a7e02345fb9c80b740377fcf7341d5df2d462efafda5
- SHA512
  
  ab8dcda75a2e9c4d7dfcc23e76b3ca76b4ec5f1fbf24007bf0e9707de17461c5016ec9005dae3f62e34f586452aa145871d371536572365b35bf33b43a8d24ab
- SSDEEP
  
  196608:QEY5GwRkSKyuh6XVocAbyeEA183ZaOp6lAFywgK1HD3hHi9J:QEY5GwqMrWEAG6lA0lK1HD3JI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1