dd6c1bd4d89d4af0cfa9cde099a33e1a083fdf12b73691ce5e25130f50cb8590 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8a2d88e8eac81c04186149da4839003f
Size

110KB
Sample

240202-wneyksebgm
MD5

8a2d88e8eac81c04186149da4839003f
SHA1

1b41e723f82f8509550a1153d33ab352a7c19cb9
SHA256

dd6c1bd4d89d4af0cfa9cde099a33e1a083fdf12b73691ce5e25130f50cb8590
SHA512

4a05909db55e036853c35fe31180f57a948c3c8c89d729f5145a2962d2c09b050d13195c7dcbf2841a3fa5db3f65b5d7e89a8676464cba4edf95ff1079e098cf
SSDEEP

3072:1vEKR5R9TTJphueT2+Sx3XtZxc5UDmr3jT0N+zwkVRwm5kO83edemH9:1vEKR5R9TTJp0eT2+Sx3XtZxcKDmr3jl

Score

7^/10

Malware Config

Targets

- Target
  
  8a2d88e8eac81c04186149da4839003f
- Size
  
  110KB
- MD5
  
  8a2d88e8eac81c04186149da4839003f
- SHA1
  
  1b41e723f82f8509550a1153d33ab352a7c19cb9
- SHA256
  
  dd6c1bd4d89d4af0cfa9cde099a33e1a083fdf12b73691ce5e25130f50cb8590
- SHA512
  
  4a05909db55e036853c35fe31180f57a948c3c8c89d729f5145a2962d2c09b050d13195c7dcbf2841a3fa5db3f65b5d7e89a8676464cba4edf95ff1079e098cf
- SSDEEP
  
  3072:1vEKR5R9TTJphueT2+Sx3XtZxc5UDmr3jT0N+zwkVRwm5kO83edemH9:1vEKR5R9TTJp0eT2+Sx3XtZxcKDmr3jl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2