93b95125b5a75b0436d0ae321370a2020945053e9e8cd5b9be5265d12b54b3f6 | Triage

Sharing

General

Target

1.rar
Size

214KB
Sample

230317-lrje3ahe6v
MD5

ebff759b86d278b3c72ddcca54ba414e
SHA1

bc62d4fc2cd8a63c89dba1bc2af4a388b1a0d39c
SHA256

93b95125b5a75b0436d0ae321370a2020945053e9e8cd5b9be5265d12b54b3f6
SHA512

11181bdd8bc809c5dbb6b7aaea499cf2e55101da186d44a2b0f3c0203dd8b0a599271e8482183735fd369120f90f4f9aecfc0d9d8fbe0b95af4c29e6f8ecc224
SSDEEP

6144:hoaf1po7UCDTvcKjAI913g6pCSpY1QqQTk4EK0:K0HoJHVXuQjwx

Score

7^/10

Malware Config

Targets

- Target
  
  Invoice No. 102220034.js
- Size
  
  363KB
- MD5
  
  1fa02948cc7fb485b2a599a5ed89ef34
- SHA1
  
  98737df996354ccfb4524b2e9df55f306f578a31
- SHA256
  
  9b900a34a52b2a9d16b777da88308c34dbddd6df39baa3d8aeee59edb2535838
- SHA512
  
  8e223e1310ef54a044f4b9e24d5654f5c1544ec5136a957ac1864b91ecaafab6d43f10e90b1a24e8d7451a700cf796707376d56c05679d1a3e55f35f43d0e435
- SSDEEP
  
  6144:GQBvd8uQFt6/MbvrIRr8xqhSYWZ3uh8Df9FPZtrnxj2roXmOfH7ojvVfmkg2jDk:NxyuQFt6/KIWJuh8nkOv7ehg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2