31da626002a7f2f4c7cd38fa90cf928d626dad3550ccd23b767d441f6240e327 | Triage

Sharing

General

Target

ad2497c01df6b899cadaa3da0ec9a67e
Size

710KB
Sample

231222-q3qezacafl
MD5

ad2497c01df6b899cadaa3da0ec9a67e
SHA1

28c43ca1cd7fc6ac42b135b92402b296502bbf1f
SHA256

31da626002a7f2f4c7cd38fa90cf928d626dad3550ccd23b767d441f6240e327
SHA512

ae393b986d057ab2bfac901c76ec0cd11a248071b9c57a92db80f2ed4d1031d2a4d703f307bd63beff0c8b146c70291e089a556d7af8b78450a1b39c3577091b
SSDEEP

6144:3fuTBd7uWLarKAIyYAZVH3AF8+0PlPXHq5tpEMfPS2wGs+ixMmv3Zf15v2vU0SAh:iBd6z3VQwPlPXHYH6zGsrxMZDSAtk0

Score

7^/10

linux

Malware Config

Targets

- Target
  
  ad2497c01df6b899cadaa3da0ec9a67e
- Size
  
  710KB
- MD5
  
  ad2497c01df6b899cadaa3da0ec9a67e
- SHA1
  
  28c43ca1cd7fc6ac42b135b92402b296502bbf1f
- SHA256
  
  31da626002a7f2f4c7cd38fa90cf928d626dad3550ccd23b767d441f6240e327
- SHA512
  
  ae393b986d057ab2bfac901c76ec0cd11a248071b9c57a92db80f2ed4d1031d2a4d703f307bd63beff0c8b146c70291e089a556d7af8b78450a1b39c3577091b
- SSDEEP
  
  6144:3fuTBd7uWLarKAIyYAZVH3AF8+0PlPXHq5tpEMfPS2wGs+ixMmv3Zf15v2vU0SAh:iBd6z3VQwPlPXHYH6zGsrxMZDSAtk0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  .sqe/[atd]
- Size
  
  576KB
- MD5
  
  3a1159c9d6ffa2ae468cdda1f5b5fd9a
- SHA1
  
  42d42e90b69242c17f8f6720a53745ec2326eafc
- SHA256
  
  639ea723ed4a98b4cff6d381feb60f36ef7d73f25f95e3bbcf15e15d7f1b37be
- SHA512
  
  053025e48a5a71cb14569ec988a622e0c24f62412dade640193887825d7db5081dde766a0ac95edeae38ac4d1562452603e3b1335c2a9d46bec172be978e9791
- SSDEEP
  
  6144:2Bd7uWLarKAIyYAZVH3AF8+0PlPXHq5tpEMfPS2wGs+ixM/:2Bd6z3VQwPlPXHYH6zGsrxM/
Score

1^/10
behavioral3
- Target
  
  .sqe/cyc.help
- Size
  
  21KB
- MD5
  
  41cedc11b0bd8a7fd75300b80389cabb
- SHA1
  
  591f64bbd41d4d3100f42d80929b2388ca32d5b7
- SHA256
  
  1c7ceb7b882c1687837b45cee5601f2ab7ceea16e4e7a1d8253a33efd3040fac
- SHA512
  
  4a2e43e7b03bc4e861f30be53dc2e3b02b435f820a0be01df52643337558b9f65e1fa2f61dbf0949787d0e6998eac7ec7cca0a3f997b62ad89846af34b4a48e9
- SSDEEP
  
  192:Pk80z2Z8ECr40jfSHgglM7mu07/+6MhqehT1Szb01wm7FElApsrcGB1tRlnMgCGH:c8YjRqMC5YRsQf7FerpfR9MTInqKJNok
Score

1^/10
behavioral4 behavioral5
- Target
  
  .sqe/seed
- Size
  
  58B
- MD5
  
  e8acadbc8f89872f91cae4ca87ea3223
- SHA1
  
  46da4770f3b9a1cce89e98866dda6acd4495ae8a
- SHA256
  
  e046af4e65781241834fe967d1b371c0ea545d0752b46727a71f8dc63e5fa1c0
- SHA512
  
  a61f5e095679ef9b1d772d703e7f162a1dce82689318cc5b3b1a4f51af09a35bd0155971ecea9230ea02b6fa88f2f0912b52523924940b9d7083e75639e4b70e
Score

1^/10
behavioral6 behavioral7 behavioral8 behavioral9
- Target
  
  .sqe/stealth
- Size
  
  13KB
- MD5
  
  4078e8f7ce154dbba1eaeffc83f5f172
- SHA1
  
  01e8243774049339227da08a9823402df4b28750
- SHA256
  
  bb56638e86bc3c9ae5b0c19ad6fa21a4a6f19e9d0320bd96c6568f39f8c7f840
- SHA512
  
  eb0218ddde9bcfdcdde11fc7b24ed9f4e563f14fdb9dd65cd4306ce41e7a8310fa992950dbbb8579b6f965c99b6df48d90eb96da6edd2d013d677f6d9eea6df4
- SSDEEP
  
  192:fPCKXJve3WLZrA0ygDnWxu3v3Zf15v22Pd0RVco7vfHWTFbe:flJWmWNgDOu3v3Zf15v22eVf7vf2E
Score

1^/10
behavioral10

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10