c1b7b9b40112990313552323d9ea4af03bbb17effcbf37079ddb43d6320833f8 | Triage

Sharing

General

Target

2bd96ea95ec9763f9ad5846b09e79492
Size

127KB
Sample

231231-hbwhxahhh2
MD5

2bd96ea95ec9763f9ad5846b09e79492
SHA1

b2e3660fd386d32ca19093d659870ae72c898804
SHA256

c1b7b9b40112990313552323d9ea4af03bbb17effcbf37079ddb43d6320833f8
SHA512

da5e3b221f090719b8c17fb4eeb27e28c5875910fa3a601f1a6c8fe7af715db5f0c0d777786ec44881a6a8864b71f2f147d0b6429b799ccde44035da4aa094f4
SSDEEP

3072:tWIVzl1GSJLLpgmGj8g5ZQXMmwI+QXMmwI2l:gIVzl3LumGGMazMa2l

Score

7^/10

Malware Config

Targets

- Target
  
  2bd96ea95ec9763f9ad5846b09e79492
- Size
  
  127KB
- MD5
  
  2bd96ea95ec9763f9ad5846b09e79492
- SHA1
  
  b2e3660fd386d32ca19093d659870ae72c898804
- SHA256
  
  c1b7b9b40112990313552323d9ea4af03bbb17effcbf37079ddb43d6320833f8
- SHA512
  
  da5e3b221f090719b8c17fb4eeb27e28c5875910fa3a601f1a6c8fe7af715db5f0c0d777786ec44881a6a8864b71f2f147d0b6429b799ccde44035da4aa094f4
- SSDEEP
  
  3072:tWIVzl1GSJLLpgmGj8g5ZQXMmwI+QXMmwI2l:gIVzl3LumGGMazMa2l
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2