091c4be7979d9c9253cd9ddd11186b45140b99b2dc74f301e663081a5d36ae4b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

VirusShare_51645ae58559f33ecdcc59cf861960a6
Size

269KB
Sample

240610-bbj2jsad32
MD5

51645ae58559f33ecdcc59cf861960a6
SHA1

3ca497a9c9915a6a685f71817b410dd689dae19b
SHA256

091c4be7979d9c9253cd9ddd11186b45140b99b2dc74f301e663081a5d36ae4b
SHA512

d26c66ceee6be7d382bf67fbd72cef8e4fdb2d44fe23cc618cebf9e3f43920ea4b024ea7343b88c5321c3f84110952c08757b11429f0b6986a863562389b5d08
SSDEEP

6144:zcryNx0i30Q5sl1aQp5X881NqiT9yjPP54fERtTYd:z5ki30fZxNqyyjPP2s/8d

Score

7^/10

Malware Config

Targets

- Target
  
  listo.exe
- Size
  
  446KB
- MD5
  
  8d28423b8fa09ec8152405648504d6dc
- SHA1
  
  02e0919aceb7348f4ac69e78e18d436a3bd90b7b
- SHA256
  
  a134b2f305b0a37f315b273a0d4593d655f38e118a9c24e98e45e1ebea57d6c2
- SHA512
  
  370466ba0d4df8c55be279c336899636c6afd688300b465ca52fb4707c670f88ad30e41948907aa4337a470696868e4af711a4dfccc00784b0630ae93511817b
- SSDEEP
  
  6144:JP9zuPagRDCH18FA2+Emwz0P+keTFMtFWBnDdi5cIU:JP9zu5RaaX+EZ02ke5kWV9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2