ee5e6584da66c6714c7cbd7cd778598f751528b96f13203e22ab9d743c2493bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c486d912b1523c0d656dc4b265e38c8
Size

105KB
Sample

231231-hmwytaabgj
MD5

2c486d912b1523c0d656dc4b265e38c8
SHA1

4d8cf8fe7442beccc142fcf86e5a99bb74e5b25d
SHA256

ee5e6584da66c6714c7cbd7cd778598f751528b96f13203e22ab9d743c2493bf
SHA512

bb22c1d3d95e3d26bc963fb2e922c25ff8f39c48bbd34e22accf3e7b30713f0ba6d498f5ffbcc9ce33fd078679c3e5f488590d32060d8a45911d49f4974c0f98
SSDEEP

1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+l6:Z5MaVVnLA0WLM0Uvh6kd+l6

Score

7^/10

Malware Config

Targets

- Target
  
  2c486d912b1523c0d656dc4b265e38c8
- Size
  
  105KB
- MD5
  
  2c486d912b1523c0d656dc4b265e38c8
- SHA1
  
  4d8cf8fe7442beccc142fcf86e5a99bb74e5b25d
- SHA256
  
  ee5e6584da66c6714c7cbd7cd778598f751528b96f13203e22ab9d743c2493bf
- SHA512
  
  bb22c1d3d95e3d26bc963fb2e922c25ff8f39c48bbd34e22accf3e7b30713f0ba6d498f5ffbcc9ce33fd078679c3e5f488590d32060d8a45911d49f4974c0f98
- SSDEEP
  
  1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+l6:Z5MaVVnLA0WLM0Uvh6kd+l6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2