89646c9bfbb4edf70e0d2b0244e41b65bbdbf718db5e0a8bd9adb192541e6354 | Triage

Sharing

General

Target

7a8e3b2ff5ccd38e51738cb91d4e0dfd
Size

3KB
Sample

240127-sejzdsedg2
MD5

7a8e3b2ff5ccd38e51738cb91d4e0dfd
SHA1

69a2689ec49a1b9481974e212eb6dda04da949c7
SHA256

89646c9bfbb4edf70e0d2b0244e41b65bbdbf718db5e0a8bd9adb192541e6354
SHA512

d9e68df88259b3e8bf093d64a1045c3b1c138987be374e0d0c0d3f2cdc55397fd1b76a9608112acf3abdfcfb1468d4019d9570de7addcd9c728813f9f436b5d7

Score

8^/10

Malware Config

Targets

- Target
  
  7a8e3b2ff5ccd38e51738cb91d4e0dfd
- Size
  
  3KB
- MD5
  
  7a8e3b2ff5ccd38e51738cb91d4e0dfd
- SHA1
  
  69a2689ec49a1b9481974e212eb6dda04da949c7
- SHA256
  
  89646c9bfbb4edf70e0d2b0244e41b65bbdbf718db5e0a8bd9adb192541e6354
- SHA512
  
  d9e68df88259b3e8bf093d64a1045c3b1c138987be374e0d0c0d3f2cdc55397fd1b76a9608112acf3abdfcfb1468d4019d9570de7addcd9c728813f9f436b5d7
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2