419c74a3083695dabe2c59f2d4d2e49b53996ee6352f037abc672becb93df7a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

995c8b9cdaf3e54ea41f4fd97c6f989b
Size

110KB
Sample

240213-n3yp8sac98
MD5

995c8b9cdaf3e54ea41f4fd97c6f989b
SHA1

2ffe970eb0cb6ee420f2f61461de0a30fd3251ed
SHA256

419c74a3083695dabe2c59f2d4d2e49b53996ee6352f037abc672becb93df7a0
SHA512

26a2d2e200cb4b0bfc18be9e235ade017d499e914e9cb58a8e63433de334c0dd7a5b7ff850451e075d20fb4235c5e8471e7ba406538bd44c254eb1db19505031
SSDEEP

1536:fy8Q6o9/onIze7zVRaDk20Lmw+RsIL1zfoASgVMo1Cc+zxr2VLBHT:fyr9fz8T6E+RZLpThMo1CBzxrC1H

Score

7^/10

Malware Config

Targets

- Target
  
  995c8b9cdaf3e54ea41f4fd97c6f989b
- Size
  
  110KB
- MD5
  
  995c8b9cdaf3e54ea41f4fd97c6f989b
- SHA1
  
  2ffe970eb0cb6ee420f2f61461de0a30fd3251ed
- SHA256
  
  419c74a3083695dabe2c59f2d4d2e49b53996ee6352f037abc672becb93df7a0
- SHA512
  
  26a2d2e200cb4b0bfc18be9e235ade017d499e914e9cb58a8e63433de334c0dd7a5b7ff850451e075d20fb4235c5e8471e7ba406538bd44c254eb1db19505031
- SSDEEP
  
  1536:fy8Q6o9/onIze7zVRaDk20Lmw+RsIL1zfoASgVMo1Cc+zxr2VLBHT:fyr9fz8T6E+RZLpThMo1CBzxrC1H
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2