8e2e7b51880f7c2a716bc2db7a29ccff62ec61e0e28ad9a3c6db45e53a046601 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4952aa2729180a0719a44da664987dfe
Size

108KB
Sample

231226-bvwjpacee9
MD5

4952aa2729180a0719a44da664987dfe
SHA1

87da80a976835d2b020830b95358eda245982abe
SHA256

8e2e7b51880f7c2a716bc2db7a29ccff62ec61e0e28ad9a3c6db45e53a046601
SHA512

1eff6875e1b7f9e28d2608c2de7fca7a64bb3efd63071d9226a6320d0650f2a7d2bc516bc6c6ff6d8aa98c212a81bf9916425821cd77c7f875134a7cde76f472
SSDEEP

3072:4w0gg0PPikrvDbEGrA7psIhxo/zzazhACuzz+cp0:p0ggGRrbwOTzzazhACuzz+cp0

Score

7^/10

Malware Config

Targets

- Target
  
  4952aa2729180a0719a44da664987dfe
- Size
  
  108KB
- MD5
  
  4952aa2729180a0719a44da664987dfe
- SHA1
  
  87da80a976835d2b020830b95358eda245982abe
- SHA256
  
  8e2e7b51880f7c2a716bc2db7a29ccff62ec61e0e28ad9a3c6db45e53a046601
- SHA512
  
  1eff6875e1b7f9e28d2608c2de7fca7a64bb3efd63071d9226a6320d0650f2a7d2bc516bc6c6ff6d8aa98c212a81bf9916425821cd77c7f875134a7cde76f472
- SSDEEP
  
  3072:4w0gg0PPikrvDbEGrA7psIhxo/zzazhACuzz+cp0:p0ggGRrbwOTzzazhACuzz+cp0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2