cc79c4a6c3e6f937692746d740a2d77781cd7b8397384af5e81cbf43896e3705 | Triage

Sharing

General

Target

azienda_34.hta
Size

6KB
Sample

230207-mq46taec9v
MD5

ef63c63f919688dcfa706ec8ccbd36d7
SHA1

f5ec3767bc66821321927ac3fc3f86e5c83013e1
SHA256

cc79c4a6c3e6f937692746d740a2d77781cd7b8397384af5e81cbf43896e3705
SHA512

8b9baf968b3d9eefade0947ee10ea920f9bd036105f6f81c3a74e71a60f413904d10b1c4e2fb8e8497865b36e689281639ca9f4904348ed7fc5553dcd8f9d236
SSDEEP

96:weiBzTLVTUoPg2pwTEeD4b7KdaO3iOaLt3M8Mn3XTPMJsb0ODcFE+Voq3V4d296N:R0dU77rIKdn863jMM0OD9+VVF44xikuj

Score

8^/10

Malware Config

Targets

- Target
  
  azienda_34.hta
- Size
  
  6KB
- MD5
  
  ef63c63f919688dcfa706ec8ccbd36d7
- SHA1
  
  f5ec3767bc66821321927ac3fc3f86e5c83013e1
- SHA256
  
  cc79c4a6c3e6f937692746d740a2d77781cd7b8397384af5e81cbf43896e3705
- SHA512
  
  8b9baf968b3d9eefade0947ee10ea920f9bd036105f6f81c3a74e71a60f413904d10b1c4e2fb8e8497865b36e689281639ca9f4904348ed7fc5553dcd8f9d236
- SSDEEP
  
  96:weiBzTLVTUoPg2pwTEeD4b7KdaO3iOaLt3M8Mn3XTPMJsb0ODcFE+Voq3V4d296N:R0dU77rIKdn863jMM0OD9+VVF44xikuj
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

BITS Jobs

Privilege Escalation

Defense Evasion

BITS Jobs

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2