2cf1a145fb5b1ecde15d629a110ae872502c4d5fe99d0dbb912e91b8aae8aef0 | Triage

Sharing

General

Target

21052024_1515_21052024_2000 szt. Nakrętek sześciokątnych rozmiar 1-2” ze stali nierdzewnej 347.rar
Size

2KB
Sample

240521-sm3fpsaa77
MD5

da037dae1eb5539ce70c78accc931441
SHA1

715c56e47051b233196403cbdf4e446b84e6bcb5
SHA256

2cf1a145fb5b1ecde15d629a110ae872502c4d5fe99d0dbb912e91b8aae8aef0
SHA512

dc833c24823708bab53eec992d353a08550b9c77eea5c977dd4593f227c10b29149028bb8a0ba7f3755aad87a979d22de56a9739f3c9d0302b6eba43b972c2a8

Score

8^/10

Malware Config

Targets

- Target
  
  2000 szt. Nakrętek sześciokątnych rozmiar 1-2” ze stali nierdzewnej 347.vbs
- Size
  
  4KB
- MD5
  
  219107db2364ee8fd93ee4b48b43d184
- SHA1
  
  c200f76a1aee1d049b164ada2d13b070d0c6652b
- SHA256
  
  86e2c1f91f3dfb26838852ce2d1fb40c707375b823e6159910ec81486f5a6f25
- SHA512
  
  d3f8aa8a03b6594017bbc58bc0a35a02a4c98acb9374aa2ece96da6a6b06c966b23412060af8307a1215902517fd24cbf0960600d4c56a0c3d46365a72f6e919
- SSDEEP
  
  96:QKSPabyxLUmU12W7vB/de+8BlaEL7sLkmV+F5SnRSszmcaDQChSAGfp:QpUy6mU150B4ELUkQ+nwRBmcfChSHfp
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2