83f6f8c068cd5b4448b2525ee799f58aa5ad0ce40f901881eda105f6d6ed4661 | Triage

Sharing

General

Target

83f6f8c068cd5b4448b2525ee799f58aa5ad0ce40f901881eda105f6d6ed4661
Size

547KB
Sample

240806-mp84da1cnd
MD5

8ecad7a38a26ac1fc2c7804afd0599fa
SHA1

587475e77012d412fd96213f048b2fb2d5d405e9
SHA256

83f6f8c068cd5b4448b2525ee799f58aa5ad0ce40f901881eda105f6d6ed4661
SHA512

a5a2499fb2c5a7751f09c50032c2fcba1c2c87ad4c35910decf00d24d4d90e233fa383319d7ddd3537f3891a0db49240a9c2c81451192308280687015c8898d5
SSDEEP

12288:RkTOXwOv+O+qw5ZT13sjsaz6ph0lhSMXliRm6oQL0:Rdv+qIZT4Qh0lhSMXlim630

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  83f6f8c068cd5b4448b2525ee799f58aa5ad0ce40f901881eda105f6d6ed4661
- Size
  
  547KB
- MD5
  
  8ecad7a38a26ac1fc2c7804afd0599fa
- SHA1
  
  587475e77012d412fd96213f048b2fb2d5d405e9
- SHA256
  
  83f6f8c068cd5b4448b2525ee799f58aa5ad0ce40f901881eda105f6d6ed4661
- SHA512
  
  a5a2499fb2c5a7751f09c50032c2fcba1c2c87ad4c35910decf00d24d4d90e233fa383319d7ddd3537f3891a0db49240a9c2c81451192308280687015c8898d5
- SSDEEP
  
  12288:RkTOXwOv+O+qw5ZT13sjsaz6ph0lhSMXliRm6oQL0:Rdv+qIZT4Qh0lhSMXlim630
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2