f6bb6b494742470d95392bccb50d9ed3c47519320c1a66b064855abb71f8020d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f6bb6b494742470d95392bccb50d9ed3c47519320c1a66b064855abb71f8020d
Size

930KB
Sample

240316-btqxtage6y
MD5

76c7326750c8fb67b9e890d4c5e82b19
SHA1

2292a46b01ad9d36e26c5f8289720714e9ca076a
SHA256

f6bb6b494742470d95392bccb50d9ed3c47519320c1a66b064855abb71f8020d
SHA512

76b1c388276478259943b2d7a5e9a9443ac3b2a054befcf3490060e606aa4fb264cbe4d75a785e87dae23b21393b815fddaf1c4e20cdd817326611f991c01049
SSDEEP

24576:OrF61FaliOBA7J1ZjqKZPMoWgQPJv+zqL:8P3O7J19qo0ow

Score

7^/10

Malware Config

Targets

- Target
  
  f6bb6b494742470d95392bccb50d9ed3c47519320c1a66b064855abb71f8020d
- Size
  
  930KB
- MD5
  
  76c7326750c8fb67b9e890d4c5e82b19
- SHA1
  
  2292a46b01ad9d36e26c5f8289720714e9ca076a
- SHA256
  
  f6bb6b494742470d95392bccb50d9ed3c47519320c1a66b064855abb71f8020d
- SHA512
  
  76b1c388276478259943b2d7a5e9a9443ac3b2a054befcf3490060e606aa4fb264cbe4d75a785e87dae23b21393b815fddaf1c4e20cdd817326611f991c01049
- SSDEEP
  
  24576:OrF61FaliOBA7J1ZjqKZPMoWgQPJv+zqL:8P3O7J19qo0ow
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2