0fda5d111251f3521d28ff9a1ac96fc577e41b1b16659616631664dbae558468 | Triage

Sharing

General

Target

0fda5d111251f3521d28ff9a1ac96fc577e41b1b16659616631664dbae558468
Size

853KB
Sample

231211-j2gywahdgp
MD5

2e81ae8f0e2925b73c56db618bd6e639
SHA1

d57511ea6345f31b767b1cccafe86ecb6b009514
SHA256

0fda5d111251f3521d28ff9a1ac96fc577e41b1b16659616631664dbae558468
SHA512

a0013de21cfc9e51650fc6789356432558e158d48553825773343f64021f87e52d5d532fc8fb5aff9be18ff98f12284f85a5da68c2eadbe6559b2c8e0054ff9a
SSDEEP

24576:xWYJJKNaqTIzK/epPUm0uJ1Q8xRTU3gN9QzHEeg4:xWYJkTsK/epn0utxdDQzHEm

Score

8^/10

Malware Config

Targets

- Target
  
  0fda5d111251f3521d28ff9a1ac96fc577e41b1b16659616631664dbae558468
- Size
  
  853KB
- MD5
  
  2e81ae8f0e2925b73c56db618bd6e639
- SHA1
  
  d57511ea6345f31b767b1cccafe86ecb6b009514
- SHA256
  
  0fda5d111251f3521d28ff9a1ac96fc577e41b1b16659616631664dbae558468
- SHA512
  
  a0013de21cfc9e51650fc6789356432558e158d48553825773343f64021f87e52d5d532fc8fb5aff9be18ff98f12284f85a5da68c2eadbe6559b2c8e0054ff9a
- SSDEEP
  
  24576:xWYJJKNaqTIzK/epPUm0uJ1Q8xRTU3gN9QzHEeg4:xWYJkTsK/epn0utxdDQzHEm
Score

8^/10
- Drops file in Drivers directory
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2