27baf4f1ae8209cf198547d50a550d3827a654df447a915ee8a00d804b166d2e | Triage

Sharing

General

Target

sysclean.exe
Size

87KB
Sample

231112-wqwzwaae88
MD5

00574aa7ce6ffde342958d07c032a1ee
SHA1

b9a0b8fabc4b41b4b2a807f8f0e6afb703ae2c30
SHA256

27baf4f1ae8209cf198547d50a550d3827a654df447a915ee8a00d804b166d2e
SHA512

c573fb8cdab2ab00f4fb20ef525a2d4e1083054ce89982742915cbb385cc62af873cd0ff5cecd15f03cdc52e38ce58e5aef1f842014920808499fa9d91ba51ee
SSDEEP

1536:y7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfa:wq6+ouCpk2mpcWJ0r+QNTBfa

Score

7^/10

Malware Config

Targets

- Target
  
  sysclean.exe
- Size
  
  87KB
- MD5
  
  00574aa7ce6ffde342958d07c032a1ee
- SHA1
  
  b9a0b8fabc4b41b4b2a807f8f0e6afb703ae2c30
- SHA256
  
  27baf4f1ae8209cf198547d50a550d3827a654df447a915ee8a00d804b166d2e
- SHA512
  
  c573fb8cdab2ab00f4fb20ef525a2d4e1083054ce89982742915cbb385cc62af873cd0ff5cecd15f03cdc52e38ce58e5aef1f842014920808499fa9d91ba51ee
- SSDEEP
  
  1536:y7fPGykbOqjoHm4pICdfkLtAfupcWX50MxFY+yIOlnToIfa:wq6+ouCpk2mpcWJ0r+QNTBfa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1