d633b41e8a8a70204709898f8f4c37a550ef847a96c2263f32f127d1905e85f3 | Triage

Sharing

General

Target

31848b6fbbdc84b05dce3bbf3816b87b
Size

15KB
Sample

231219-qme93aegd9
MD5

31848b6fbbdc84b05dce3bbf3816b87b
SHA1

887fe0a9ae994a51d2e2f095eb841783042e7b54
SHA256

d633b41e8a8a70204709898f8f4c37a550ef847a96c2263f32f127d1905e85f3
SHA512

31f8b800f87de8da3648e2ebab2cd422b1e05dad8f7d14fd994232d9e275d3ee7211c1dfa164bc702c62cc147b9c0a40ec9e46ecebf3718731d617c3c964f0a8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYKB2FG:hDXWipuE+K3/SSHgxmKEFG

Score

7^/10

Malware Config

Targets

- Target
  
  31848b6fbbdc84b05dce3bbf3816b87b
- Size
  
  15KB
- MD5
  
  31848b6fbbdc84b05dce3bbf3816b87b
- SHA1
  
  887fe0a9ae994a51d2e2f095eb841783042e7b54
- SHA256
  
  d633b41e8a8a70204709898f8f4c37a550ef847a96c2263f32f127d1905e85f3
- SHA512
  
  31f8b800f87de8da3648e2ebab2cd422b1e05dad8f7d14fd994232d9e275d3ee7211c1dfa164bc702c62cc147b9c0a40ec9e46ecebf3718731d617c3c964f0a8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYKB2FG:hDXWipuE+K3/SSHgxmKEFG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2