33eb88cf89fbb107c52f968578b336d774acbe9fcc8c751bdda42fd3925ebf33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

989c560967f9274e330d5c64c9ff6741
Size

36KB
Sample

240213-gbrdhsfg5z
MD5

989c560967f9274e330d5c64c9ff6741
SHA1

d59dd730f6f1dde5276e637d318ed6235c7d69c2
SHA256

33eb88cf89fbb107c52f968578b336d774acbe9fcc8c751bdda42fd3925ebf33
SHA512

2fd3675e8e1ba3766794d7e12d299bc9554c3bea5f6a6167d93e7b222bf0487de2a466bde92e450a88bde077cb7b78457702555705efb7b0b762000b982d4d14
SSDEEP

768:jjgiGxy+iC146BDRK97J3+ZFWo2iU+DaLW:3My+hQYFWuaLW

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  989c560967f9274e330d5c64c9ff6741
- Size
  
  36KB
- MD5
  
  989c560967f9274e330d5c64c9ff6741
- SHA1
  
  d59dd730f6f1dde5276e637d318ed6235c7d69c2
- SHA256
  
  33eb88cf89fbb107c52f968578b336d774acbe9fcc8c751bdda42fd3925ebf33
- SHA512
  
  2fd3675e8e1ba3766794d7e12d299bc9554c3bea5f6a6167d93e7b222bf0487de2a466bde92e450a88bde077cb7b78457702555705efb7b0b762000b982d4d14
- SSDEEP
  
  768:jjgiGxy+iC146BDRK97J3+ZFWo2iU+DaLW:3My+hQYFWuaLW
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2