7af869ba7474d75e82dfdea64bb4038a3b374e3763e6a4d41b1e66a0f6995ed6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a5e645e06a8c6c214a8490bc67d858f
Size

121KB
Sample

231231-gcw1dshgc2
MD5

2a5e645e06a8c6c214a8490bc67d858f
SHA1

c350acc066195dbd1b482098f02a1fef1b8fe7d4
SHA256

7af869ba7474d75e82dfdea64bb4038a3b374e3763e6a4d41b1e66a0f6995ed6
SHA512

65ccf0345b7896b43c2542a2e7303ae493ac3c07f5ae2fbd8530e6d1fb305af442631700cafff339662a72ea927986a10f2bac6be37fae0274071a9cb864402d
SSDEEP

1536:jNxxmEDtqrQ8NSP5re9zSCREd+blIUuKSbT10Zu3hpqlHQ:RxQEDtqrQ5re9BS+blIpNtix

Score

7^/10

Malware Config

Targets

- Target
  
  2a5e645e06a8c6c214a8490bc67d858f
- Size
  
  121KB
- MD5
  
  2a5e645e06a8c6c214a8490bc67d858f
- SHA1
  
  c350acc066195dbd1b482098f02a1fef1b8fe7d4
- SHA256
  
  7af869ba7474d75e82dfdea64bb4038a3b374e3763e6a4d41b1e66a0f6995ed6
- SHA512
  
  65ccf0345b7896b43c2542a2e7303ae493ac3c07f5ae2fbd8530e6d1fb305af442631700cafff339662a72ea927986a10f2bac6be37fae0274071a9cb864402d
- SSDEEP
  
  1536:jNxxmEDtqrQ8NSP5re9zSCREd+blIUuKSbT10Zu3hpqlHQ:RxQEDtqrQ5re9BS+blIpNtix
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2