3a2c823ce35de4ac527e77f63e02a7d7dd2c56b2eaad89ef2c092f62ce1775eb | Triage

Sharing

General

Target

06473a9c3b6bed0ea7bd7e9ef1f1cb0e
Size

64KB
Sample

231224-t671zaeef9
MD5

06473a9c3b6bed0ea7bd7e9ef1f1cb0e
SHA1

d4d6371bd9a43c51b72490acc363a61988ef2286
SHA256

3a2c823ce35de4ac527e77f63e02a7d7dd2c56b2eaad89ef2c092f62ce1775eb
SHA512

25c9d99829c9d4401cb6eed92c25e0eba07b94763c6d68238b2fe406b951f523850be3da852249a409db0ad4230f8a18101eb077cc8e9e73d79c95fbd4549dde
SSDEEP

768:WBZRFIzD/mjNgXFVdl6ih18ORsWsDL6KhjWCpRI+CTnQIItL2FN9wBq+a:WPCcdiZsWmFZRIxOL2FN9ara

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  06473a9c3b6bed0ea7bd7e9ef1f1cb0e
- Size
  
  64KB
- MD5
  
  06473a9c3b6bed0ea7bd7e9ef1f1cb0e
- SHA1
  
  d4d6371bd9a43c51b72490acc363a61988ef2286
- SHA256
  
  3a2c823ce35de4ac527e77f63e02a7d7dd2c56b2eaad89ef2c092f62ce1775eb
- SHA512
  
  25c9d99829c9d4401cb6eed92c25e0eba07b94763c6d68238b2fe406b951f523850be3da852249a409db0ad4230f8a18101eb077cc8e9e73d79c95fbd4549dde
- SSDEEP
  
  768:WBZRFIzD/mjNgXFVdl6ih18ORsWsDL6KhjWCpRI+CTnQIItL2FN9wBq+a:WPCcdiZsWmFZRIxOL2FN9ara
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2