959dc1a9cfa6170f4f28323c26d2d0cdb1a9ecbf9394d34ba1e01d0d753f5253 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Netflix Generator And Checker By SISTRO.exe
Size

431KB
Sample

240806-2wcfbatblp
MD5

15a81fe5111416fd2dc13bfd57a4b89a
SHA1

f83c6e5b29016a36f4470b343bb2744a6a5f95f4
SHA256

959dc1a9cfa6170f4f28323c26d2d0cdb1a9ecbf9394d34ba1e01d0d753f5253
SHA512

0ed122d2491f36ae40cc86b9b1e4d686c5d0c256631c65fd0b293a5dbf92311627248f441625233b3f706f030b2b2d220c3febeda57686083bbd6403e912d6a1
SSDEEP

12288:UtH5NLaAdDhAAEIFDefYepCF1Y7spd9tX/:UtH5sAdXEIFDGY2CF1Y7sz9tX/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Netflix Generator And Checker By SISTRO.exe
- Size
  
  431KB
- MD5
  
  15a81fe5111416fd2dc13bfd57a4b89a
- SHA1
  
  f83c6e5b29016a36f4470b343bb2744a6a5f95f4
- SHA256
  
  959dc1a9cfa6170f4f28323c26d2d0cdb1a9ecbf9394d34ba1e01d0d753f5253
- SHA512
  
  0ed122d2491f36ae40cc86b9b1e4d686c5d0c256631c65fd0b293a5dbf92311627248f441625233b3f706f030b2b2d220c3febeda57686083bbd6403e912d6a1
- SSDEEP
  
  12288:UtH5NLaAdDhAAEIFDefYepCF1Y7spd9tX/:UtH5sAdXEIFDGY2CF1Y7sz9tX/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2