17b278045a8814170e06d7532e17b831bede8d968ee1a562ca2e9e9b9634c286 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17b278045a8814170e06d7532e17b831bede8d968ee1a562ca2e9e9b9634c286
Size

868KB
Sample

240410-lsxn3sbb74
MD5

0981f1145c1cec6a5de51c7d585affe3
SHA1

9adfc833aa773a81d2d5b101027417c57f6d343f
SHA256

17b278045a8814170e06d7532e17b831bede8d968ee1a562ca2e9e9b9634c286
SHA512

52c59c8e6c6eabcd712dc4e66093f62e6c486d3784e445cb5144c50bd6b376f09a8169e2dc36da31b03163edd1a33dce00305b16e6b31ff0914d7cbf10617e68
SSDEEP

12288:yPgtJQXBDj5yo6kkWRS05K6Jrz+EW3QL+1xXnKfVM6fkjuJ03Fl7bE:MYJQXBD1ekkbSK+HsoAxXnsr21l7bE

Score

7^/10

Malware Config

Targets

- Target
  
  17b278045a8814170e06d7532e17b831bede8d968ee1a562ca2e9e9b9634c286
- Size
  
  868KB
- MD5
  
  0981f1145c1cec6a5de51c7d585affe3
- SHA1
  
  9adfc833aa773a81d2d5b101027417c57f6d343f
- SHA256
  
  17b278045a8814170e06d7532e17b831bede8d968ee1a562ca2e9e9b9634c286
- SHA512
  
  52c59c8e6c6eabcd712dc4e66093f62e6c486d3784e445cb5144c50bd6b376f09a8169e2dc36da31b03163edd1a33dce00305b16e6b31ff0914d7cbf10617e68
- SSDEEP
  
  12288:yPgtJQXBDj5yo6kkWRS05K6Jrz+EW3QL+1xXnKfVM6fkjuJ03Fl7bE:MYJQXBD1ekkbSK+HsoAxXnsr21l7bE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2