388e1f36d35dcbe4675821f4104514f66bcefdee33752acad874e45bdf44499a | Triage

Sharing

General

Target

edce4301c8d01cf9b904be_11074.hta
Size

254KB
Sample

230318-wfaznadb65
MD5

9d447d72b85eca4c58a5b14dbb170e01
SHA1

9c39245d5b40e4815d006ce6fe402e7ec26e0045
SHA256

388e1f36d35dcbe4675821f4104514f66bcefdee33752acad874e45bdf44499a
SHA512

c7d9a77a78f1ee3dec93d288bbcd774f4667778970012cdbd4b0b0835ca29dc8717d9c90c07c79847e13483eb1057e039dae13777a33d1f157baa1d5e227c5f2
SSDEEP

1536:zUz1/ER14rRDVEKiN7uuv/mPb103+lkMDKGkL7n:zqy1uDVjaSuwv52LD

Score

8^/10

Malware Config

Targets

- Target
  
  edce4301c8d01cf9b904be_11074.hta
- Size
  
  254KB
- MD5
  
  9d447d72b85eca4c58a5b14dbb170e01
- SHA1
  
  9c39245d5b40e4815d006ce6fe402e7ec26e0045
- SHA256
  
  388e1f36d35dcbe4675821f4104514f66bcefdee33752acad874e45bdf44499a
- SHA512
  
  c7d9a77a78f1ee3dec93d288bbcd774f4667778970012cdbd4b0b0835ca29dc8717d9c90c07c79847e13483eb1057e039dae13777a33d1f157baa1d5e227c5f2
- SSDEEP
  
  1536:zUz1/ER14rRDVEKiN7uuv/mPb103+lkMDKGkL7n:zqy1uDVjaSuwv52LD
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2