5a12d2df019c6c978278622610fa99513c788072555898761f47defd0649314a | Triage

Sharing

General

Target

9045005822.zip
Size

393KB
Sample

230209-s1224aaa74
MD5

72141abd0594e201ceec01a84706de4c
SHA1

a700ec3aab1e8a2ee6cfc79792acdcf166bdf1bd
SHA256

5a12d2df019c6c978278622610fa99513c788072555898761f47defd0649314a
SHA512

255461f7f40f68c2c540babc6689ae754394e0bd349f9c1aeaab709a5e93ddb8d01f2f5a705d7777afe621d3e556f79c16f25d9d8452ad02c91eaf27c66a42f5
SSDEEP

6144:+pFrVPehGQ8s7P++qu1T5CFea2aodnYuO9INFn5R14u4xd9+uE7+I:+pxV4qmoeaEtYuIoB5Rg39+RqI

Score

7^/10

Malware Config

Targets

- Target
  
  647bb02b78e1186ff014133f5f948f6a72d3ae3edfb19d7d3293fb36d0c2c20a
- Size
  
  593KB
- MD5
  
  f6c23891999c108068f9b119f552729c
- SHA1
  
  f528f19b55119180c9202a2e22059590756d1185
- SHA256
  
  647bb02b78e1186ff014133f5f948f6a72d3ae3edfb19d7d3293fb36d0c2c20a
- SHA512
  
  4a5394474e9833ee00c3f405d89d284703f9578551b4b75b254968c4c6276bbb47922b74a4cfe8917a698d7c104c02afacf1cbea2ee682993d15ecabf8eacd0c
- SSDEEP
  
  12288:wHQSYtswIsMXhZEpUrvXVX1dPb7dnJGnpu8QjUDZUndu8kd:w7RsMXhuePVFVJknpu8Qj68kd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2