4e103d11262a210c29e68a300f52adf859519d4713949312f98d6eb21d2d2892 | Triage

Sharing

General

Target

2024-01-06_512d8be6dfb3669385499345017f933c_mafia
Size

191KB
Sample

240107-pbl3ssech8
MD5

512d8be6dfb3669385499345017f933c
SHA1

0a43aecf77e5f5ab24b6b2bf06a0d37c722d72bb
SHA256

4e103d11262a210c29e68a300f52adf859519d4713949312f98d6eb21d2d2892
SHA512

7ff325431f6597e2b1e274658627f9603cc55c12d8259e9722b4bcd91efe819cb898d56cbf8b11b27196855feaf6c5844e7c3b30f2e6117c81e7c5534089e1ca
SSDEEP

3072:8XL4MpQHD7J44LPBLFIC9TTVoaequZLc0DwRcKRzzWFWKSvv5bp:qL5pU3DdvwqtRcazzPd35

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_512d8be6dfb3669385499345017f933c_mafia
- Size
  
  191KB
- MD5
  
  512d8be6dfb3669385499345017f933c
- SHA1
  
  0a43aecf77e5f5ab24b6b2bf06a0d37c722d72bb
- SHA256
  
  4e103d11262a210c29e68a300f52adf859519d4713949312f98d6eb21d2d2892
- SHA512
  
  7ff325431f6597e2b1e274658627f9603cc55c12d8259e9722b4bcd91efe819cb898d56cbf8b11b27196855feaf6c5844e7c3b30f2e6117c81e7c5534089e1ca
- SSDEEP
  
  3072:8XL4MpQHD7J44LPBLFIC9TTVoaequZLc0DwRcKRzzWFWKSvv5bp:qL5pU3DdvwqtRcazzPd35
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2