57f098faf1eea434aeb1bbd1972d556762c2011311aa7f4f4d0a8001b2511445 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

33cfb6db006bcd37efa35b3ece4dd075
Size

88KB
Sample

231225-wwl2vsdad5
MD5

33cfb6db006bcd37efa35b3ece4dd075
SHA1

1e899b3e5798765b2c409c7bd3adf94e5cff053b
SHA256

57f098faf1eea434aeb1bbd1972d556762c2011311aa7f4f4d0a8001b2511445
SHA512

da2f21ef3e23cc3c1056c7fbf8d0f892722c4edd4702acf4e1e53d91b5065f35e274a3f02cd6b97fa2305af15066fb5ddd08c04b56868915e5eb18dfd45c5091
SSDEEP

1536:veAGJNqGwjNotD2ZM8SPH25NLh4FSia8LcZnydrM:lExw64/2W5NaSia8KnyK

Score

7^/10

Malware Config

Targets

- Target
  
  33cfb6db006bcd37efa35b3ece4dd075
- Size
  
  88KB
- MD5
  
  33cfb6db006bcd37efa35b3ece4dd075
- SHA1
  
  1e899b3e5798765b2c409c7bd3adf94e5cff053b
- SHA256
  
  57f098faf1eea434aeb1bbd1972d556762c2011311aa7f4f4d0a8001b2511445
- SHA512
  
  da2f21ef3e23cc3c1056c7fbf8d0f892722c4edd4702acf4e1e53d91b5065f35e274a3f02cd6b97fa2305af15066fb5ddd08c04b56868915e5eb18dfd45c5091
- SSDEEP
  
  1536:veAGJNqGwjNotD2ZM8SPH25NLh4FSia8LcZnydrM:lExw64/2W5NaSia8KnyK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2