89145ae4e1d56a32fc9bc800f60ef6d603103daaef0071b35d036c11f5b773d4 | Triage

Sharing

General

Target

89145ae4e1d56a32fc9bc800f60ef6d603103daaef0071b35d036c11f5b773d4
Size

15KB
Sample

231011-abcrssbc36
MD5

1ccb8abdfa19dcd9beb68caad7b27dbf
SHA1

66d9ae0ffe477cf297db6035acce52048683e3cb
SHA256

89145ae4e1d56a32fc9bc800f60ef6d603103daaef0071b35d036c11f5b773d4
SHA512

ea845376b706595d251b726e21b7817f916711094d6f4d4d72d8e16f2533b5665bb6db156426740b5eb1d8b922403f586196906b7acaa460128cc036fe0bf15b
SSDEEP

192:IsuAMVIF7QVGZos0ffI6sOUE+/qHa+DSf0RxOQnLjoSg3hfG5/X8cOO88vdX:yIWCj0ffI6sOUEBamn4Sg3UX8cOyX

Score

8^/10

Malware Config

Targets

- Target
  
  89145ae4e1d56a32fc9bc800f60ef6d603103daaef0071b35d036c11f5b773d4
- Size
  
  15KB
- MD5
  
  1ccb8abdfa19dcd9beb68caad7b27dbf
- SHA1
  
  66d9ae0ffe477cf297db6035acce52048683e3cb
- SHA256
  
  89145ae4e1d56a32fc9bc800f60ef6d603103daaef0071b35d036c11f5b773d4
- SHA512
  
  ea845376b706595d251b726e21b7817f916711094d6f4d4d72d8e16f2533b5665bb6db156426740b5eb1d8b922403f586196906b7acaa460128cc036fe0bf15b
- SSDEEP
  
  192:IsuAMVIF7QVGZos0ffI6sOUE+/qHa+DSf0RxOQnLjoSg3hfG5/X8cOO88vdX:yIWCj0ffI6sOUEBamn4Sg3UX8cOyX
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2