04f245c7dd29e4f33941ba5f331176d828bb5f40c290c81ea8aaf50618d54422 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

XXX.exe
Size

3.8MB
Sample

240219-ym23tscf23
MD5

14f59cfc0998d4f732b4d8121efba491
SHA1

e301b18b38a052705d4e7282d272e75afcf43042
SHA256

04f245c7dd29e4f33941ba5f331176d828bb5f40c290c81ea8aaf50618d54422
SHA512

04311eabf84d12ae0fa14ad232c16dc66846e5d542464565b849d1cf80e2bbbd16b3587a394a9de9e8dfcbe47007f86eb1793d4fc6f4b9585ce715f8e08b4b04
SSDEEP

98304:47G5Cgbq6/4x30hoVYvlz3pFM6DwVR8xytcraE/m:aRDx3Sa2Twv2wG

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  XXX.exe
- Size
  
  3.8MB
- MD5
  
  14f59cfc0998d4f732b4d8121efba491
- SHA1
  
  e301b18b38a052705d4e7282d272e75afcf43042
- SHA256
  
  04f245c7dd29e4f33941ba5f331176d828bb5f40c290c81ea8aaf50618d54422
- SHA512
  
  04311eabf84d12ae0fa14ad232c16dc66846e5d542464565b849d1cf80e2bbbd16b3587a394a9de9e8dfcbe47007f86eb1793d4fc6f4b9585ce715f8e08b4b04
- SSDEEP
  
  98304:47G5Cgbq6/4x30hoVYvlz3pFM6DwVR8xytcraE/m:aRDx3Sa2Twv2wG
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1