3d372f02382a84a29c37e6c249bf42505fe4879fa903e40627c4ccf8599cb747 | Triage

Sharing

General

Target

21035122903faa28395fd0644b8ddb8d
Size

36KB
Sample

231231-acyewsagak
MD5

21035122903faa28395fd0644b8ddb8d
SHA1

5e323a2c0a33d53bde2f63350d125385cb6cc4f2
SHA256

3d372f02382a84a29c37e6c249bf42505fe4879fa903e40627c4ccf8599cb747
SHA512

3aa0197667ccfd4a14a2b85858ebb1e0f3449d6850f6ccc2e953fefd5700a0b724e8b232de1c2f3dca6e6655e9853dd45804f8db7971e1aa3e309d98784bbe03
SSDEEP

384:iOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+:2jgiGxy+is1M6BDRK97J3+ZFWo2iU+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  21035122903faa28395fd0644b8ddb8d
- Size
  
  36KB
- MD5
  
  21035122903faa28395fd0644b8ddb8d
- SHA1
  
  5e323a2c0a33d53bde2f63350d125385cb6cc4f2
- SHA256
  
  3d372f02382a84a29c37e6c249bf42505fe4879fa903e40627c4ccf8599cb747
- SHA512
  
  3aa0197667ccfd4a14a2b85858ebb1e0f3449d6850f6ccc2e953fefd5700a0b724e8b232de1c2f3dca6e6655e9853dd45804f8db7971e1aa3e309d98784bbe03
- SSDEEP
  
  384:iOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+:2jgiGxy+is1M6BDRK97J3+ZFWo2iU+
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2