1a70f6cc8324fbe5da0b63e504ee8d0ef585945cff6474681eeca9d9c944a7e9 | Triage

Sharing

General

Target

11232b28da9e8544e02961cf66803f09
Size

115KB
Sample

231224-zbnazaceh6
MD5

11232b28da9e8544e02961cf66803f09
SHA1

4f90690b5d0cb37fde415f2d558e263f5cabb0d2
SHA256

1a70f6cc8324fbe5da0b63e504ee8d0ef585945cff6474681eeca9d9c944a7e9
SHA512

d0dd4dc7b84bc0474d9ae76a5590352bae7ecf3fd50b41e4e95c1a06af82d7fede36dc3be2431f1eb1609bdcd630417a0405fccd88c07e2e6c05d985d7e3b73a
SSDEEP

3072:YmpEp9xUWu1gGjXr2vwvEbMps2i/XHCob:YmpPTj7QIpsPx

Score

7^/10

Malware Config

Targets

- Target
  
  11232b28da9e8544e02961cf66803f09
- Size
  
  115KB
- MD5
  
  11232b28da9e8544e02961cf66803f09
- SHA1
  
  4f90690b5d0cb37fde415f2d558e263f5cabb0d2
- SHA256
  
  1a70f6cc8324fbe5da0b63e504ee8d0ef585945cff6474681eeca9d9c944a7e9
- SHA512
  
  d0dd4dc7b84bc0474d9ae76a5590352bae7ecf3fd50b41e4e95c1a06af82d7fede36dc3be2431f1eb1609bdcd630417a0405fccd88c07e2e6c05d985d7e3b73a
- SSDEEP
  
  3072:YmpEp9xUWu1gGjXr2vwvEbMps2i/XHCob:YmpPTj7QIpsPx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2