4f464533c92ec3544e089e2675243b809d21358d3e00964a409458ae3913073e | Triage

Sharing

General

Target

4f464533c92ec3544e089e2675243b809d21358d3e00964a409458ae3913073e
Size

1.9MB
Sample

240810-tsmg4sxdjm
MD5

ae136ee998229f2898b20cc44cf2bc99
SHA1

58865afb9cbf97c018ba449728269de1ee4201aa
SHA256

4f464533c92ec3544e089e2675243b809d21358d3e00964a409458ae3913073e
SHA512

c28e32354cf001971741116037704ef1e1af047ac873adb7b1734a38e55ff45250b6ad325d00c9a0823b081dc07c3f6eb54c2addf1f3b76a9e31a6d208ece1b1
SSDEEP

49152:RjfTJ/oCSH68lv7kwLyuKV6KZPlI1XGjwgTnVTAbY4Rxkcm5j:RjfTPSKZFhTAkYxkV5j

Score

7^/10

Malware Config

Targets

- Target
  
  4f464533c92ec3544e089e2675243b809d21358d3e00964a409458ae3913073e
- Size
  
  1.9MB
- MD5
  
  ae136ee998229f2898b20cc44cf2bc99
- SHA1
  
  58865afb9cbf97c018ba449728269de1ee4201aa
- SHA256
  
  4f464533c92ec3544e089e2675243b809d21358d3e00964a409458ae3913073e
- SHA512
  
  c28e32354cf001971741116037704ef1e1af047ac873adb7b1734a38e55ff45250b6ad325d00c9a0823b081dc07c3f6eb54c2addf1f3b76a9e31a6d208ece1b1
- SSDEEP
  
  49152:RjfTJ/oCSH68lv7kwLyuKV6KZPlI1XGjwgTnVTAbY4Rxkcm5j:RjfTPSKZFhTAkYxkV5j
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2