8e843a4e7b55145c79bc114afbc16657549f6eae6908da51697aa53a3d4a1a05 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b787fa1fa7269ae204edd2af167b464
Size

1014KB
Sample

231231-g2qjxafha2
MD5

2b787fa1fa7269ae204edd2af167b464
SHA1

bea8bc4683ecd2f08db0eafdf30f4797d3693ebb
SHA256

8e843a4e7b55145c79bc114afbc16657549f6eae6908da51697aa53a3d4a1a05
SHA512

9bd12c1540da56c83ef434eee7093645f9a2a8825910fd2c97458a4f718d707a1e96ed9ed31bc84a868c38e110bf215b3e79e6a3f17993157b7b7b950f74a9c1
SSDEEP

24576:wNIz9BlPTEsgQx/wzMwQptMnxa39rCmgeKkWKhQEVcsO:LJB2wJwwqnsNrngMzJO

Score

7^/10

Malware Config

Targets

- Target
  
  2b787fa1fa7269ae204edd2af167b464
- Size
  
  1014KB
- MD5
  
  2b787fa1fa7269ae204edd2af167b464
- SHA1
  
  bea8bc4683ecd2f08db0eafdf30f4797d3693ebb
- SHA256
  
  8e843a4e7b55145c79bc114afbc16657549f6eae6908da51697aa53a3d4a1a05
- SHA512
  
  9bd12c1540da56c83ef434eee7093645f9a2a8825910fd2c97458a4f718d707a1e96ed9ed31bc84a868c38e110bf215b3e79e6a3f17993157b7b7b950f74a9c1
- SSDEEP
  
  24576:wNIz9BlPTEsgQx/wzMwQptMnxa39rCmgeKkWKhQEVcsO:LJB2wJwwqnsNrngMzJO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2