5d69fde0fe30fb5869f9b2a172839102e8cea59a62c4c9bafbcb75d67ab8d7be | Triage

Resubmissions

10/03/2024, 11:29

240310-nljvrabf79 7

Sharing

Copy URL Twitter E-mail

General

Target

ssm.rar
Size

10.4MB
Sample

240310-nljvrabf79
MD5

f41dd4847ad98fca466488cc5e165a42
SHA1

c95c3fa74d0ff4e4338374aea7dae43755a355c1
SHA256

5d69fde0fe30fb5869f9b2a172839102e8cea59a62c4c9bafbcb75d67ab8d7be
SHA512

70072ba535039b6db9f4abd843b61af016139723cb1e75f920fca4fa9c3f9ba3080893061c8da5d0c17bd0f49d92d819e85c6a5e39b1bead75e758105cd22066
SSDEEP

196608:o/agjDKDUlmIUYvqPNDLgxCEFXlBvzWOsGkDbkW7XRUa9Rhf2dpopE1:kagHK1ngxfl5WzGk/dma9bf2dx

Score

7^/10

Malware Config

Targets

- Target
  
  ssm.rar
- Size
  
  10.4MB
- MD5
  
  f41dd4847ad98fca466488cc5e165a42
- SHA1
  
  c95c3fa74d0ff4e4338374aea7dae43755a355c1
- SHA256
  
  5d69fde0fe30fb5869f9b2a172839102e8cea59a62c4c9bafbcb75d67ab8d7be
- SHA512
  
  70072ba535039b6db9f4abd843b61af016139723cb1e75f920fca4fa9c3f9ba3080893061c8da5d0c17bd0f49d92d819e85c6a5e39b1bead75e758105cd22066
- SSDEEP
  
  196608:o/agjDKDUlmIUYvqPNDLgxCEFXlBvzWOsGkDbkW7XRUa9Rhf2dpopE1:kagHK1ngxfl5WzGk/dma9bf2dx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2