d3ae20cfce0beaa99e7e025e636ffdf1edb803adce99a3778625e89f965456fa | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00d3271c81d87f0111fadd455ae428a5
Size

29KB
Sample

231229-xdds7schar
MD5

00d3271c81d87f0111fadd455ae428a5
SHA1

44a0c267778d7530b5553ad0af29ee5c5da5894d
SHA256

d3ae20cfce0beaa99e7e025e636ffdf1edb803adce99a3778625e89f965456fa
SHA512

a8a8660ad1110345ed125a331ed2e45fc7bdd1d2b5e6cb13a6dae70832acfa6a6bdb9cb1149b8c1167e84c32ba5ffa36b963fb747c14bf4e53213ccfcb7461e8
SSDEEP

768:oGU21skdbiRnclSOKsmFVSFyT84ZOAWr6x0S8lr:oGvbiRncl3KS940FJSy

Score

7^/10

Malware Config

Targets

- Target
  
  00d3271c81d87f0111fadd455ae428a5
- Size
  
  29KB
- MD5
  
  00d3271c81d87f0111fadd455ae428a5
- SHA1
  
  44a0c267778d7530b5553ad0af29ee5c5da5894d
- SHA256
  
  d3ae20cfce0beaa99e7e025e636ffdf1edb803adce99a3778625e89f965456fa
- SHA512
  
  a8a8660ad1110345ed125a331ed2e45fc7bdd1d2b5e6cb13a6dae70832acfa6a6bdb9cb1149b8c1167e84c32ba5ffa36b963fb747c14bf4e53213ccfcb7461e8
- SSDEEP
  
  768:oGU21skdbiRnclSOKsmFVSFyT84ZOAWr6x0S8lr:oGvbiRncl3KS940FJSy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2