7b1dac7ad14356f6ab1ab79815d5af7d21e3b3354a2a221108a402632fe8473d | Triage

Sharing

General

Target

azienda_15.rar
Size

4KB
Sample

230207-kmkxnadg2y
MD5

9d51e47d75870d1ef1938bb9846bc9d2
SHA1

0137210d172414832cdda86e02c701863b034c5d
SHA256

7b1dac7ad14356f6ab1ab79815d5af7d21e3b3354a2a221108a402632fe8473d
SHA512

83c43e791937a35a931c605a373badb33d5a9f5ed71795be71f5c9d932e796edd5fab2bbd755d07df61ec17381ca05965a0ee54feaae8e129b593859ea7f18f3
SSDEEP

96:Ij7lpxw+fVIfiS4U6DCz1WokGxtm+iQCTLjK+8N73apLhVTogMl3pcWeNPMW:Wxp3IficWCz1WokGxtoTLjK70Ml5RetT

Score

8^/10

Malware Config

Targets

- Target
  
  azienda_15.hta
- Size
  
  6KB
- MD5
  
  d9b99afe071446581e7878af95a90706
- SHA1
  
  56e7f3f09a68d37a110ec41a4739592310294ca7
- SHA256
  
  7128ab66b0ccce2d742c747b82b52a7ef25fab82301fa04995aa05798ae82e31
- SHA512
  
  403a86cffdd635a16f1c2e66e71efb1a56523ff40d33ddf1a8f5d2f43233c0dd1dfeac658c82bc0560d602e4ad9a650056d3af7c5b9254a8515f0547ecfbddca
- SSDEEP
  
  192:qgXQU77rIKdn863jMM0OD9+VVF4GxikuL:bH7EOM7/F4MuL
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

BITS Jobs

Privilege Escalation

Defense Evasion

BITS Jobs

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2