a27835ad71833743504aca52292758115a07e2eb66e196a77760be81a624c2b2 | Triage

Sharing

General

Target

c5b4646d7fd71be69ee219baf37ebeec
Size

64KB
Sample

240313-m31zxsdc95
MD5

c5b4646d7fd71be69ee219baf37ebeec
SHA1

bfb7620e677917173fabcfd6030d4cf9a2a7814f
SHA256

a27835ad71833743504aca52292758115a07e2eb66e196a77760be81a624c2b2
SHA512

7fe26d57c47bb7957c62360cae03ac1d7a8afc987836c15e1b42309ea6f95269e30a7c73b26e7e46d864fbacb1bcb1fb397f7e9034eb4aad504c17701f84f742
SSDEEP

768:rafQmHy4c93vGSxt7j7g1E9wWEWJJd3G5U3s4xQMm37L3EVgfRO+ozTly:zmS9T5ftwWTGm3O33/IJ1

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  c5b4646d7fd71be69ee219baf37ebeec
- Size
  
  64KB
- MD5
  
  c5b4646d7fd71be69ee219baf37ebeec
- SHA1
  
  bfb7620e677917173fabcfd6030d4cf9a2a7814f
- SHA256
  
  a27835ad71833743504aca52292758115a07e2eb66e196a77760be81a624c2b2
- SHA512
  
  7fe26d57c47bb7957c62360cae03ac1d7a8afc987836c15e1b42309ea6f95269e30a7c73b26e7e46d864fbacb1bcb1fb397f7e9034eb4aad504c17701f84f742
- SSDEEP
  
  768:rafQmHy4c93vGSxt7j7g1E9wWEWJJd3G5U3s4xQMm37L3EVgfRO+ozTly:zmS9T5ftwWTGm3O33/IJ1
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2