ba54756be96d683273ec3e6e31c4b4ea88ae1135544166a547749aafaee91326 | Triage

Sharing

General

Target

aa14d49887f2bb6c5e9ce7c8c9c7edd4
Size

32KB
Sample

240227-y8tctaah2x
MD5

aa14d49887f2bb6c5e9ce7c8c9c7edd4
SHA1

e9f0c84d3c969dcb3a1af7ebfe40f245f4899de6
SHA256

ba54756be96d683273ec3e6e31c4b4ea88ae1135544166a547749aafaee91326
SHA512

d5045fc75bcccf34ad20ff13563119795044c049f4a75436e4ad724b50115888e5f8449273551b56d13833a1226066c024b11330cc69cacee707ffddb2002121
SSDEEP

384:FGau5YSmjkvB58NhnGDdan2NmKecIKm5NEkH9CdLh8zWRQf3R:OGn/ydaE7ec7URZKQf

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  aa14d49887f2bb6c5e9ce7c8c9c7edd4
- Size
  
  32KB
- MD5
  
  aa14d49887f2bb6c5e9ce7c8c9c7edd4
- SHA1
  
  e9f0c84d3c969dcb3a1af7ebfe40f245f4899de6
- SHA256
  
  ba54756be96d683273ec3e6e31c4b4ea88ae1135544166a547749aafaee91326
- SHA512
  
  d5045fc75bcccf34ad20ff13563119795044c049f4a75436e4ad724b50115888e5f8449273551b56d13833a1226066c024b11330cc69cacee707ffddb2002121
- SSDEEP
  
  384:FGau5YSmjkvB58NhnGDdan2NmKecIKm5NEkH9CdLh8zWRQf3R:OGn/ydaE7ec7URZKQf
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2