d1ff939a417eeb03bdf7e6ab45c99d2c7dcd1875e457b1f6f98920812a50c87b | Triage

Sharing

General

Target

d1ff939a417eeb03bdf7e6ab45c99d2c7dcd1875e457b1f6f98920812a50c87b
Size

342KB
Sample

231013-edefmaeh95
MD5

fafb2ade02cb0ec3acceae8f61a7234a
SHA1

a17732e746fe36f52be96478aeb1d12465b48a52
SHA256

d1ff939a417eeb03bdf7e6ab45c99d2c7dcd1875e457b1f6f98920812a50c87b
SHA512

adfdbb35b4436fd1c444a0dde012e9cad0ebb5b2a4c4a4597678ff5a0f17a5ebd525ee1b5bdec86298d62b82deb959f0228935f2373c1cf4698cd115a1b9171a
SSDEEP

6144:v4JvSws00f5TEW/qJI0+CMi+1HnS9gtVyUC2zA2:vKnsFn/qJI0+CMignQgtVlC2

Score

7^/10

Malware Config

Targets

- Target
  
  d1ff939a417eeb03bdf7e6ab45c99d2c7dcd1875e457b1f6f98920812a50c87b
- Size
  
  342KB
- MD5
  
  fafb2ade02cb0ec3acceae8f61a7234a
- SHA1
  
  a17732e746fe36f52be96478aeb1d12465b48a52
- SHA256
  
  d1ff939a417eeb03bdf7e6ab45c99d2c7dcd1875e457b1f6f98920812a50c87b
- SHA512
  
  adfdbb35b4436fd1c444a0dde012e9cad0ebb5b2a4c4a4597678ff5a0f17a5ebd525ee1b5bdec86298d62b82deb959f0228935f2373c1cf4698cd115a1b9171a
- SSDEEP
  
  6144:v4JvSws00f5TEW/qJI0+CMi+1HnS9gtVyUC2zA2:vKnsFn/qJI0+CMignQgtVlC2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2