ecf336470333f976ecb38f31f28af401b94589d816ee27d10a028a6c36c0cb86 | Triage

Sharing

General

Target

5510ca04908eb2936a0c5adfa4be2dc3
Size

53KB
Sample

240112-bezw6sbger
MD5

5510ca04908eb2936a0c5adfa4be2dc3
SHA1

bdf38775de1a1688b263c06d90623a00a388affb
SHA256

ecf336470333f976ecb38f31f28af401b94589d816ee27d10a028a6c36c0cb86
SHA512

e3b929bf8de9494e162fcf66ca2a2a15aff55370056a30a63da683757294de615a71ef153014c38a9eae85f2d30bbb1d570a8755cec4f91a9e7cec7a97866b52
SSDEEP

1536:P57caXaF3mMtz85m2DSeePOyyezqabAaqzJ+4okbo:BaFV6ReLA/E4okbo

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  5510ca04908eb2936a0c5adfa4be2dc3
- Size
  
  53KB
- MD5
  
  5510ca04908eb2936a0c5adfa4be2dc3
- SHA1
  
  bdf38775de1a1688b263c06d90623a00a388affb
- SHA256
  
  ecf336470333f976ecb38f31f28af401b94589d816ee27d10a028a6c36c0cb86
- SHA512
  
  e3b929bf8de9494e162fcf66ca2a2a15aff55370056a30a63da683757294de615a71ef153014c38a9eae85f2d30bbb1d570a8755cec4f91a9e7cec7a97866b52
- SSDEEP
  
  1536:P57caXaF3mMtz85m2DSeePOyyezqabAaqzJ+4okbo:BaFV6ReLA/E4okbo
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2