0561bc3f94f9d8d1ec5f8639998e742a20fe6aa3dedcd4663aeb15706870432b | Triage

Sharing

General

Target

87c9f6da1bde1c4762477b55c8fbd4f821464f23669c08eef59df00adc438a37.zip
Size

198KB
Sample

231022-vkwlgsbc6w
MD5

b956b0b9b8c74c8cef6573873dd77482
SHA1

fb070aa70ea2482fe2c02c1abfd504aa69933112
SHA256

0561bc3f94f9d8d1ec5f8639998e742a20fe6aa3dedcd4663aeb15706870432b
SHA512

72558f3f4b9d1b34da9e545c455f446f919770816fcd6595fe06d7cd71e8bee63bdffb0bf27a9d0f5a7f9848a184bf53513c2d7f0a36180ae1cb8b8356ff5e6c
SSDEEP

6144:GdFlX6G/txOnwV06CiHJRaADneDZs87z7C2iBAN29vln/k8vf:GY8tYwVuAJRaeeDpzOK8lkaf

Score

7^/10

Malware Config

Targets

- Target
  
  87c9f6da1bde1c4762477b55c8fbd4f821464f23669c08eef59df00adc438a37.exe
- Size
  
  345KB
- MD5
  
  1860ebf427dccac7292813bb1fa12e5b
- SHA1
  
  d889765ae93d9543ac9725345ab3814490d176a7
- SHA256
  
  87c9f6da1bde1c4762477b55c8fbd4f821464f23669c08eef59df00adc438a37
- SHA512
  
  ed2a155d6128b7c8c958c89e823f3ec7c95ac5770f4bd8731ebcbeb70fa3a8df42a9cf54dec1121a07185766f759ed08b404840fee36c32d320de18acf70db6b
- SSDEEP
  
  6144:aMGZ2bjyNNGhGwfAe90daIOT7DGDdJtLYL:RUwjyNoGwxMaJQ7E
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2