3441e66bd2febee7b35a6268f466b526628cdc2de0abab93b5cbf8a4c239d50a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1a317a097885c0ec6e228786348ba88f
Size

3KB
Sample

231230-qvtsesceh6
MD5

1a317a097885c0ec6e228786348ba88f
SHA1

40fbbc16982d0e4a8df97a51a52921653226c193
SHA256

3441e66bd2febee7b35a6268f466b526628cdc2de0abab93b5cbf8a4c239d50a
SHA512

f96013e39c571a3b0cff976bd3f4e55e51cf13b1bf325fb479b94ef247241384a6d73648323a23390209d5b1303195b16de47064d7b4f17e8f04fa287d7481ee

Score

8^/10

Malware Config

Targets

- Target
  
  1a317a097885c0ec6e228786348ba88f
- Size
  
  3KB
- MD5
  
  1a317a097885c0ec6e228786348ba88f
- SHA1
  
  40fbbc16982d0e4a8df97a51a52921653226c193
- SHA256
  
  3441e66bd2febee7b35a6268f466b526628cdc2de0abab93b5cbf8a4c239d50a
- SHA512
  
  f96013e39c571a3b0cff976bd3f4e55e51cf13b1bf325fb479b94ef247241384a6d73648323a23390209d5b1303195b16de47064d7b4f17e8f04fa287d7481ee
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2