56b4779ce31b7a5a54ca4fc33c77ffe5585b548c10d99de0f2c4c4cf3c45cc67 | Triage

Sharing

General

Target

7dd9a6b913ec96e83d495de2a8afb5d6
Size

36KB
Sample

240128-yjehcshaf6
MD5

7dd9a6b913ec96e83d495de2a8afb5d6
SHA1

9993312b77bcbe682096575ae30f9fef6c345f3f
SHA256

56b4779ce31b7a5a54ca4fc33c77ffe5585b548c10d99de0f2c4c4cf3c45cc67
SHA512

f8456aad3b4ba737fef172b20a2a4c28151abcb85964e383fe4b66cbc7d1154d2b871e5594bab7e846402352c16f64631af06f594d9f96b3ddccbc543fdc9ed7
SSDEEP

384:FOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+:vjgiGxy+is1M6BDRK97J3+ZFWo2iU+

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  7dd9a6b913ec96e83d495de2a8afb5d6
- Size
  
  36KB
- MD5
  
  7dd9a6b913ec96e83d495de2a8afb5d6
- SHA1
  
  9993312b77bcbe682096575ae30f9fef6c345f3f
- SHA256
  
  56b4779ce31b7a5a54ca4fc33c77ffe5585b548c10d99de0f2c4c4cf3c45cc67
- SHA512
  
  f8456aad3b4ba737fef172b20a2a4c28151abcb85964e383fe4b66cbc7d1154d2b871e5594bab7e846402352c16f64631af06f594d9f96b3ddccbc543fdc9ed7
- SSDEEP
  
  384:FOgGIbRJpai9c49Wigp5/y+ixe1+B6BDR+v+I7J3SvwKF58o2iU+:vjgiGxy+is1M6BDRK97J3+ZFWo2iU+
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2