2d3c6aceecb6a3bcc55c842833bdaf6345148a84c41509c477d6f877ff7798ea | Triage

Sharing

General

Target

9fa5d0f5f63752a2e62954eb2b8f5ea3
Size

170KB
Sample

231222-qk85csacf9
MD5

9fa5d0f5f63752a2e62954eb2b8f5ea3
SHA1

f38117aea0530a32c5de2aa0435ffda78c69e88d
SHA256

2d3c6aceecb6a3bcc55c842833bdaf6345148a84c41509c477d6f877ff7798ea
SHA512

62b5ea73d7d79171914956edec1a2abfed4e9db6ead906a8615f2fc6e511bbf1a178c47c392b576459665b99960133e171880f5d8e4b72a27c635b602a0576f4
SSDEEP

3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/e8t:o68i3odBiTl2+TCU/P

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  9fa5d0f5f63752a2e62954eb2b8f5ea3
- Size
  
  170KB
- MD5
  
  9fa5d0f5f63752a2e62954eb2b8f5ea3
- SHA1
  
  f38117aea0530a32c5de2aa0435ffda78c69e88d
- SHA256
  
  2d3c6aceecb6a3bcc55c842833bdaf6345148a84c41509c477d6f877ff7798ea
- SHA512
  
  62b5ea73d7d79171914956edec1a2abfed4e9db6ead906a8615f2fc6e511bbf1a178c47c392b576459665b99960133e171880f5d8e4b72a27c635b602a0576f4
- SSDEEP
  
  3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/e8t:o68i3odBiTl2+TCU/P
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2