34f349cdb4ae2a927bc47ad8cedf2f323bda51e13ee5f8c1a31b8800a40c98e2 | Triage

Sharing

General

Target

TrashTool.exe
Size

63.8MB
Sample

240119-y21tbadaak
MD5

0461182c63d298533e15cba51a341e7b
SHA1

51632fabcffcc4b01309b49541bf5c62c26e74c9
SHA256

34f349cdb4ae2a927bc47ad8cedf2f323bda51e13ee5f8c1a31b8800a40c98e2
SHA512

145674db4fd6b5a6798b156ac410db3e5fc09f61ab14d34862ce475d41a4a265f9b1538e4142be102578dc5ffd7be135e7c065592eb9cf271a504581512ff792
SSDEEP

393216:YatW17zlizbSjjFUL4PQFT6hTnJxExOqPoDOf4/CqmfDavuDzHxTNZXwxscP7E0C:pskHS+16hdmqSOmbZXwWcApHIyf1

Score

7^/10

Malware Config

Targets

- Target
  
  TrashTool.exe
- Size
  
  63.8MB
- MD5
  
  0461182c63d298533e15cba51a341e7b
- SHA1
  
  51632fabcffcc4b01309b49541bf5c62c26e74c9
- SHA256
  
  34f349cdb4ae2a927bc47ad8cedf2f323bda51e13ee5f8c1a31b8800a40c98e2
- SHA512
  
  145674db4fd6b5a6798b156ac410db3e5fc09f61ab14d34862ce475d41a4a265f9b1538e4142be102578dc5ffd7be135e7c065592eb9cf271a504581512ff792
- SSDEEP
  
  393216:YatW17zlizbSjjFUL4PQFT6hTnJxExOqPoDOf4/CqmfDavuDzHxTNZXwxscP7E0C:pskHS+16hdmqSOmbZXwWcApHIyf1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2