52f5b2e257fd18b84416e6044a1481016613a8207779d19c2f6cd09ec1dbf71a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4a8c27dcbc74bb754407a3b52777e19
Size

111KB
Sample

240305-panv1aec9s
MD5

b4a8c27dcbc74bb754407a3b52777e19
SHA1

45e49645e95dcf40e245dd3c5820a779d00ae670
SHA256

52f5b2e257fd18b84416e6044a1481016613a8207779d19c2f6cd09ec1dbf71a
SHA512

96b7daddc676afe85053cb62ad84de85db923c5a83fff124909d21c24047f15766ab0563303ba80e9a0f6b49c115d08461a98363a43be83b65be875193bfb5a2
SSDEEP

3072:WwxVMhOC/dTDbq91+mno3t4QZQ3rAHYifl:WTfFDbRnOTrA4I

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  b4a8c27dcbc74bb754407a3b52777e19
- Size
  
  111KB
- MD5
  
  b4a8c27dcbc74bb754407a3b52777e19
- SHA1
  
  45e49645e95dcf40e245dd3c5820a779d00ae670
- SHA256
  
  52f5b2e257fd18b84416e6044a1481016613a8207779d19c2f6cd09ec1dbf71a
- SHA512
  
  96b7daddc676afe85053cb62ad84de85db923c5a83fff124909d21c24047f15766ab0563303ba80e9a0f6b49c115d08461a98363a43be83b65be875193bfb5a2
- SSDEEP
  
  3072:WwxVMhOC/dTDbq91+mno3t4QZQ3rAHYifl:WTfFDbRnOTrA4I
Score

8^/10

persistence
- Creates new service(s)
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2