ead8892397e732edf6b364b618ba25bebf92be7fc0f6239137a2b975291e777b | Triage

Sharing

General

Target

15fbf5fdc84909bfea6495abb30e5360
Size

72KB
Sample

231230-mkh2dshhfr
MD5

15fbf5fdc84909bfea6495abb30e5360
SHA1

987997c6298da0aced4d8b4d0e2082bc53f0b247
SHA256

ead8892397e732edf6b364b618ba25bebf92be7fc0f6239137a2b975291e777b
SHA512

126e344262f164048a1fdcc67a9d6f945f68fe4e64ca64cf1e3b5ffc35de0041336c90da4da67d5dc7e98d091e5eb34c21b0e8596cdf3f4cc0bca10434ba3cfe
SSDEEP

1536:+sCUYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6Es2:+kYxgU6kl+0sTSVYw/4/xEKb6JVoNHIM

Score

7^/10

Malware Config

Targets

- Target
  
  15fbf5fdc84909bfea6495abb30e5360
- Size
  
  72KB
- MD5
  
  15fbf5fdc84909bfea6495abb30e5360
- SHA1
  
  987997c6298da0aced4d8b4d0e2082bc53f0b247
- SHA256
  
  ead8892397e732edf6b364b618ba25bebf92be7fc0f6239137a2b975291e777b
- SHA512
  
  126e344262f164048a1fdcc67a9d6f945f68fe4e64ca64cf1e3b5ffc35de0041336c90da4da67d5dc7e98d091e5eb34c21b0e8596cdf3f4cc0bca10434ba3cfe
- SSDEEP
  
  1536:+sCUYxgU6kl+0sTSVYSN/4/xEKb6JVoNHIU9P6Es2:+kYxgU6kl+0sTSVYw/4/xEKb6JVoNHIM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2