1c8eb3bf72bf18166870202c1d9f403c16c7b85df827696cd6f854333a80f5d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

09a284b7b9eee7c7cca23f6207e6d7d2
Size

33KB
Sample

231230-bjlkcaadb2
MD5

09a284b7b9eee7c7cca23f6207e6d7d2
SHA1

999768d688e32510b1ea8cdf02afb34d0d47efd4
SHA256

1c8eb3bf72bf18166870202c1d9f403c16c7b85df827696cd6f854333a80f5d2
SHA512

bb57ac22be9448ab3e7a321dc91a05019687c7edb69184154abf0713321135f6c89a272263f01a75ff60c8578840a232d81d9c644cbd3d0ec2a2fed05e15468e
SSDEEP

384:Dw5+1h1UYii+lNppElKelRgr8I4GSFdVp8NAbifwpIgX+FW3el7xI:2+1hS7i+lbpElBqMB3+I/qWQ7

Score

7^/10

Malware Config

Targets

- Target
  
  09a284b7b9eee7c7cca23f6207e6d7d2
- Size
  
  33KB
- MD5
  
  09a284b7b9eee7c7cca23f6207e6d7d2
- SHA1
  
  999768d688e32510b1ea8cdf02afb34d0d47efd4
- SHA256
  
  1c8eb3bf72bf18166870202c1d9f403c16c7b85df827696cd6f854333a80f5d2
- SHA512
  
  bb57ac22be9448ab3e7a321dc91a05019687c7edb69184154abf0713321135f6c89a272263f01a75ff60c8578840a232d81d9c644cbd3d0ec2a2fed05e15468e
- SSDEEP
  
  384:Dw5+1h1UYii+lNppElKelRgr8I4GSFdVp8NAbifwpIgX+FW3el7xI:2+1hS7i+lbpElBqMB3+I/qWQ7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2