527771d7d660fa0fcdb51d4d19602d8c60c420f8a594f0d9b9aa00670105f0d7 | Triage

Sharing

General

Target

98860f7832d3533ce050b81aac42e2bc
Size

253KB
Sample

240213-fh9m1abg9t
MD5

98860f7832d3533ce050b81aac42e2bc
SHA1

55b08d28bcbaa53cf3b7508dca9f4e3cdd18eeda
SHA256

527771d7d660fa0fcdb51d4d19602d8c60c420f8a594f0d9b9aa00670105f0d7
SHA512

27bf828beb5d2cf3edffcb2b20729ce7ef0a9151fde2efe722ed20e3a940b36b60e86ce03e44e1c37a0f8065aa8e9c0a4ef4bfe23f85bef6acb93cacd2ecf7d9
SSDEEP

6144:o68i3odBiTl2+TCU/BtkqxrqLck9k8KfI:TNodBiTI+TpBDrVk9AI

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  98860f7832d3533ce050b81aac42e2bc
- Size
  
  253KB
- MD5
  
  98860f7832d3533ce050b81aac42e2bc
- SHA1
  
  55b08d28bcbaa53cf3b7508dca9f4e3cdd18eeda
- SHA256
  
  527771d7d660fa0fcdb51d4d19602d8c60c420f8a594f0d9b9aa00670105f0d7
- SHA512
  
  27bf828beb5d2cf3edffcb2b20729ce7ef0a9151fde2efe722ed20e3a940b36b60e86ce03e44e1c37a0f8065aa8e9c0a4ef4bfe23f85bef6acb93cacd2ecf7d9
- SSDEEP
  
  6144:o68i3odBiTl2+TCU/BtkqxrqLck9k8KfI:TNodBiTI+TpBDrVk9AI
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2