2b6392d854b3747eb5b728eaf1f37dab3de9ef2ec9f6140c9e3c969ccf4fcbd3 | Triage

Sharing

General

Target

39ac6f78e012433fa9bf0e553cfa67e7
Size

64KB
Sample

231231-rp1jfsddhj
MD5

39ac6f78e012433fa9bf0e553cfa67e7
SHA1

a91489d78d3e342c55e2c6ecbdc2649334612dcb
SHA256

2b6392d854b3747eb5b728eaf1f37dab3de9ef2ec9f6140c9e3c969ccf4fcbd3
SHA512

ce1852f8430dd8f17ae873a9f7521265a506b658390b4fc2cfcb1237d11824870e2880a98be5c9dc6a173308b60fb1ec9c127bc7d0e12511dcc9547c2c313c23
SSDEEP

768:zafQmHy4c93vGSxt7j7g1E9wWEWJJd3G5U3s4xQMm37L3EVgfRO+ozTlt:rmS9T5ftwWTGm3O33/IJ1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  39ac6f78e012433fa9bf0e553cfa67e7
- Size
  
  64KB
- MD5
  
  39ac6f78e012433fa9bf0e553cfa67e7
- SHA1
  
  a91489d78d3e342c55e2c6ecbdc2649334612dcb
- SHA256
  
  2b6392d854b3747eb5b728eaf1f37dab3de9ef2ec9f6140c9e3c969ccf4fcbd3
- SHA512
  
  ce1852f8430dd8f17ae873a9f7521265a506b658390b4fc2cfcb1237d11824870e2880a98be5c9dc6a173308b60fb1ec9c127bc7d0e12511dcc9547c2c313c23
- SSDEEP
  
  768:zafQmHy4c93vGSxt7j7g1E9wWEWJJd3G5U3s4xQMm37L3EVgfRO+ozTlt:rmS9T5ftwWTGm3O33/IJ1
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2