354fe07dce22506e3d3a9bd343ff6a007d3f0ff311ec445a5d0fc0c59f7f336b | Triage

Sharing

General

Target

de834982155ffcb753b1dd17388cf5dd
Size

239KB
Sample

231222-s6aj2adaf4
MD5

de834982155ffcb753b1dd17388cf5dd
SHA1

dce72110af863d0355004c9543703ff7a6581802
SHA256

354fe07dce22506e3d3a9bd343ff6a007d3f0ff311ec445a5d0fc0c59f7f336b
SHA512

2010eab3fc55723fdf7f317212ad7220f1e7c926786357ede922c543104825d7731c7a2a6896c2e9661fd35987849feb37493b898b76958d3a8d07ed9d65aa5c
SSDEEP

3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/B87pjIkgnDpik:o68i3odBiTl2+TCU/WIk8OhuhuIL

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  de834982155ffcb753b1dd17388cf5dd
- Size
  
  239KB
- MD5
  
  de834982155ffcb753b1dd17388cf5dd
- SHA1
  
  dce72110af863d0355004c9543703ff7a6581802
- SHA256
  
  354fe07dce22506e3d3a9bd343ff6a007d3f0ff311ec445a5d0fc0c59f7f336b
- SHA512
  
  2010eab3fc55723fdf7f317212ad7220f1e7c926786357ede922c543104825d7731c7a2a6896c2e9661fd35987849feb37493b898b76958d3a8d07ed9d65aa5c
- SSDEEP
  
  3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/B87pjIkgnDpik:o68i3odBiTl2+TCU/WIk8OhuhuIL
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2