8bd51f92e6eeec74af4f97e24b3e338a80b3dd57eb1e2304d6bfa0c9d677f963 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b02ef4510c888781e24714e09fd4104f
Size

27KB
Sample

231219-1x27pagfd2
MD5

b02ef4510c888781e24714e09fd4104f
SHA1

a7a4c6ab8a14bcf1f423cd53bad3425a5382c87d
SHA256

8bd51f92e6eeec74af4f97e24b3e338a80b3dd57eb1e2304d6bfa0c9d677f963
SHA512

2db7231176a2f1a8707eed652fbe392b329eb0af31fd586c936e22c22a7e900e4eef1ff45f57c2e07683059b8486600ff7f9ae40718a0c336d5e89d2e05b30fa
SSDEEP

384:rYWgasxFqgqj9VonKUmXtMi8e/Gyz0q+alVvHEuCdZlhLnlgM11Kl2tOpvRMdH:rY7asxuj9O9ADND8lzVOpvyH

Score

7^/10

Malware Config

Targets

- Target
  
  b02ef4510c888781e24714e09fd4104f
- Size
  
  27KB
- MD5
  
  b02ef4510c888781e24714e09fd4104f
- SHA1
  
  a7a4c6ab8a14bcf1f423cd53bad3425a5382c87d
- SHA256
  
  8bd51f92e6eeec74af4f97e24b3e338a80b3dd57eb1e2304d6bfa0c9d677f963
- SHA512
  
  2db7231176a2f1a8707eed652fbe392b329eb0af31fd586c936e22c22a7e900e4eef1ff45f57c2e07683059b8486600ff7f9ae40718a0c336d5e89d2e05b30fa
- SSDEEP
  
  384:rYWgasxFqgqj9VonKUmXtMi8e/Gyz0q+alVvHEuCdZlhLnlgM11Kl2tOpvRMdH:rY7asxuj9O9ADND8lzVOpvyH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2