04c40f2a4ac3ea6814654dbb3073a57239145a444c39f9cfd7a3f6a385a13a45 | Triage

Resubmissions

29/01/2024, 10:32

240129-mlgjyshcfp 7

29/01/2024, 09:12

240129-k5827seea2 7

Sharing

Copy URL Twitter E-mail

General

Target

gpg.exe
Size

131.2MB
Sample

240129-mlgjyshcfp
MD5

3e37208e30201d80de0f912907723050
SHA1

9ec19c725bb74dcf0b9e2ff95df2c6c5b548fc45
SHA256

04c40f2a4ac3ea6814654dbb3073a57239145a444c39f9cfd7a3f6a385a13a45
SHA512

ba1e3fe2d56d4b301764378651062e086a4565aab1d522637168016d5c8e1e4b8e014eb5e918834fdd2624f21d3f1879dc9de2ffb0bc3b624ed19e053d7e3c78
SSDEEP

786432:Bc5agkTMKPB6bBK4Hj3PczFikilrRV0GO2hTtTpuLj07tOqka9RbBupn4TtLwSTM:a58TM1ryE0cTpoOvka9RN8zdN

Score

7^/10

Malware Config

Targets

- Target
  
  gpg.exe
- Size
  
  131.2MB
- MD5
  
  3e37208e30201d80de0f912907723050
- SHA1
  
  9ec19c725bb74dcf0b9e2ff95df2c6c5b548fc45
- SHA256
  
  04c40f2a4ac3ea6814654dbb3073a57239145a444c39f9cfd7a3f6a385a13a45
- SHA512
  
  ba1e3fe2d56d4b301764378651062e086a4565aab1d522637168016d5c8e1e4b8e014eb5e918834fdd2624f21d3f1879dc9de2ffb0bc3b624ed19e053d7e3c78
- SSDEEP
  
  786432:Bc5agkTMKPB6bBK4Hj3PczFikilrRV0GO2hTtTpuLj07tOqka9RbBupn4TtLwSTM:a58TM1ryE0cTpoOvka9RN8zdN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1