9e9a003e275cfab96e0ab68b30fb59c439eb4c79178d039a276cedcd2eef1749 | Triage

Resubmissions

12/04/2023, 16:33

230412-t2s19afa3x 7

12/04/2023, 16:30

230412-tz2klsdd93 7

Sharing

Copy URL Twitter E-mail

General

Target

Architectural Interiors.zip
Size

26.0MB
Sample

230412-tz2klsdd93
MD5

3d1f2b3a5cca253ad70b2554e77e88e4
SHA1

7480d3331f5bc7b4dff51ec0ed4ad4cdb89ed0cf
SHA256

9e9a003e275cfab96e0ab68b30fb59c439eb4c79178d039a276cedcd2eef1749
SHA512

fc92404238b425d04d852636d1f4fc8fe1fe0a84434e86c19e70f42d5547a35b4947a0e1fb9a862f6443084f5925f5a353ad0a8c7fbe9825b78d9ae1d776206e
SSDEEP

393216:l6mvCGC//K3sYO58Abi/kNKoheoFfCbkc6DNSsnB7KM5wdIHy25Hfixg9d:l6mvjCK3sr8AFXheoFL/VwdeZ56W9d

Score

7^/10

Malware Config

Targets

- Target
  
  Architectural Interiors.js
- Size
  
  41.6MB
- MD5
  
  bc6852b699f29617dfb4527478608108
- SHA1
  
  9474b5c9983ef20617db149853a036dd177e7f7d
- SHA256
  
  f9e307d88d1c32d6291d3b8de2cc5db0f32c3b24e04de37e23086037178bb7ff
- SHA512
  
  2b71c3473b7aff690aa06f414c8df81ee58102e9ba7eaf0951cf8e4eb4f2f700281ab937f17d36842ca4bdccbe4f5984243aef5321232b099080841b69aa6e94
- SSDEEP
  
  49152:Wn7bhZzGKpB48pXoLbl8tIWZMiFsjGYFGSpwwdXKU1RavQmmWdk86K8cxy8tatBE:Wnz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2