42b783d7cc9d9c79fec5dd084ed9bfe346bd0cb38ac38169ba9cdcf6bdf232fb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

354b019401325ff28a5d2cbb274472ff.bin
Size

21KB
Sample

230922-bp6gpsde64
MD5

ddfa2f0f005a5d87d5e2c9fce0f07e85
SHA1

6bc0c7819021233f99603dd732785aba22a489d2
SHA256

42b783d7cc9d9c79fec5dd084ed9bfe346bd0cb38ac38169ba9cdcf6bdf232fb
SHA512

c3a9ed9b7940c616aab3ef6ad7285367c118ffe09079d7be412b3f6dcfe6e0a8597b5b82d22450142c6044b21a187ff2c94b49f2c39cbcb5633dc795a3cf7d49
SSDEEP

384:cyego3BuiQ6NUxLrD5E8tZsVKtnmsF69l/HGGr2+vqw3A3zY0HsKXZjBqT+:MB3Q2kLrFE8tASnmsF6zy+vqgAjY6DXD

Score

7^/10

Malware Config

Targets

- Target
  
  9490c9ab48e5d901acbe59cb0fbc27d8a6dd7b13976ee16fa4c2da61742e4314.vbs
- Size
  
  40KB
- MD5
  
  354b019401325ff28a5d2cbb274472ff
- SHA1
  
  31c5cf959a67e6b0e9e9483c5069a05edfb50384
- SHA256
  
  9490c9ab48e5d901acbe59cb0fbc27d8a6dd7b13976ee16fa4c2da61742e4314
- SHA512
  
  06ecb638d7aec1bfe8e4df2a248a8d5d70f85b0e9c40091fa5d8271b02f6da53c4ac1a7b9d05e060416733f7c4f99b52f537bd0eaefc49ea5eb7d1a0d49463ec
- SSDEEP
  
  768:corMtwTVlHPwlR5EQi/GoF6bgTU2XMmjp5zAiPh2SF0GCG8x:coQqPwN6GoF6b2cmV5kicW7Ox
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2