ae24fca3098f428c9026953bf6b2a8e105b8505b41d8a2f96d84a8c9fa66ec35 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d1f148b171cc87eb8342710388eeef3.bin
Size

20KB
Sample

240727-bc8fjawerr
MD5

0d1f148b171cc87eb8342710388eeef3
SHA1

3714a087c3dcdd68c4f51e6b2503ac379cf53d4e
SHA256

ae24fca3098f428c9026953bf6b2a8e105b8505b41d8a2f96d84a8c9fa66ec35
SHA512

b5781e3beb70d05c32dfeb06895b15566fb691290386f2d9e3d9f8544d251db05d5165e7164fa497cef01b77e8a7da559fff868e0a11f4e996bd47bf9e564400
SSDEEP

192:3fphRW/zOAdQN1NdCXpqrrBz+b+6wGbIe09Xbu:x/iOAWN1uXkrrkiX6NAS

Score

7^/10

defense_evasion execution

Malware Config

Targets

- Target
  
  0d1f148b171cc87eb8342710388eeef3.bin
- Size
  
  20KB
- MD5
  
  0d1f148b171cc87eb8342710388eeef3
- SHA1
  
  3714a087c3dcdd68c4f51e6b2503ac379cf53d4e
- SHA256
  
  ae24fca3098f428c9026953bf6b2a8e105b8505b41d8a2f96d84a8c9fa66ec35
- SHA512
  
  b5781e3beb70d05c32dfeb06895b15566fb691290386f2d9e3d9f8544d251db05d5165e7164fa497cef01b77e8a7da559fff868e0a11f4e996bd47bf9e564400
- SSDEEP
  
  192:3fphRW/zOAdQN1NdCXpqrrBz+b+6wGbIe09Xbu:x/iOAWN1uXkrrkiX6NAS
Score

7^/10

defense_evasion execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Obfuscated Files or Information: Command Obfuscation
  Adversaries may obfuscate content during command execution to impede detection.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Obfuscated Files or Information

Command Obfuscation

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasionexecution

behavioral2

defense_evasionexecution