5f90572c734fe0d8677d1e97e3f432afbd6dbcbe28d0b4c604efaae0d0666908 | Triage

Sharing

General

Target

cd29406006592156b9534256936624c8
Size

43KB
Sample

240316-fk849aed38
MD5

cd29406006592156b9534256936624c8
SHA1

13b3cbdb0f9f92a2ce6c06e8dd06af93be7566b5
SHA256

5f90572c734fe0d8677d1e97e3f432afbd6dbcbe28d0b4c604efaae0d0666908
SHA512

cd8a03a6d086aff56044c765594fa64ffd9983d3f1949bca49669432c21bec46e7a0449602be7604768cc3968ffaa3bebdaa70bd24c1693a5774de1d202ae226
SSDEEP

768:88wV5a/FehMHzBHZDgGVNvEHZ3w/UqgyJ8cgYLK3dzS3vDfBWilwtljC6truPq:88wE/Fe+TBHDNgyJ8p3dIfBWkSuq

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  cd29406006592156b9534256936624c8
- Size
  
  43KB
- MD5
  
  cd29406006592156b9534256936624c8
- SHA1
  
  13b3cbdb0f9f92a2ce6c06e8dd06af93be7566b5
- SHA256
  
  5f90572c734fe0d8677d1e97e3f432afbd6dbcbe28d0b4c604efaae0d0666908
- SHA512
  
  cd8a03a6d086aff56044c765594fa64ffd9983d3f1949bca49669432c21bec46e7a0449602be7604768cc3968ffaa3bebdaa70bd24c1693a5774de1d202ae226
- SSDEEP
  
  768:88wV5a/FehMHzBHZDgGVNvEHZ3w/UqgyJ8cgYLK3dzS3vDfBWilwtljC6truPq:88wE/Fe+TBHDNgyJ8p3dIfBWkSuq
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2