a02e4509dc38c94a9dbcb32c02bf59780e442dccc19609b04b07a5b1d119ff38 | Triage

Sharing

General

Target

TG1754_2023-11-27_06_10_19.993.zip
Size

126KB
Sample

231127-g5tezaeh34
MD5

3ea3bcf680df4f75dff3836cfb8dfdd4
SHA1

d959aa543f9a4897351fb15840a7fd86687dbce8
SHA256

a02e4509dc38c94a9dbcb32c02bf59780e442dccc19609b04b07a5b1d119ff38
SHA512

4ebeabaaae9fa41d06d32327f053c831a4be3e16b99963a890fb252b382fb010d67ae323ce7d3fc69d739abb12a89268c5f2b3679b74a00135438a5c6ad7ecca
SSDEEP

3072:+oeGG0iPfrjoRQNbvLvpx7qxMOjtiZ247QK40aat28U3:+ohIPfXoRQNbL/ef5ik6K9idi

Score

7^/10

Malware Config

Targets

- Target
  
  Device/HarddiskVolume4/OneP/oneP.exe
- Size
  
  236KB
- MD5
  
  451c7f753f6ab2a9f5ef0a96426fbd4c
- SHA1
  
  416090ae3ba444248e1305713374f35b9fa7b0f8
- SHA256
  
  b63934eb58efbd0a2684c466ef4b27f448677ab03296acdd5a1181b19c51c4d8
- SHA512
  
  66155d24e67201beb6fac42138fe36abf5b9b7d14ba058eb7debac082479acbd69993b1f16a05bad040e6209e95beaeb7eb0ff2d7cf7b998562fb0f0fdb38d11
- SSDEEP
  
  3072:Fq6+ouCpk2mpcWJ0r+QNTBfSQxRzKc+UJ62FDNFRttBQ1BGhRhoGqGbqQh8hht7A:Fldk1cWQRNTB62L+Uo0DNXIh8TB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2