d1742efcb88caaceb940fe138c8408cad4de7b3ad8ecea117c06fc0e88a07335 | Triage

Sharing

General

Target

17082024_0148_seize.tar.hta
Size

464KB
Sample

240817-b8kz4stelm
MD5

ea715c7c1835b450cdb839bc5eefbd9b
SHA1

426740b7201149601dce3a2f9244073cd373d46d
SHA256

d1742efcb88caaceb940fe138c8408cad4de7b3ad8ecea117c06fc0e88a07335
SHA512

d635cc1a7a0c4903cd6f584e07c7a3bf31f715ef30dbf2b6a91e28cb1ca84999fe30dd939c6c4b60cb0468891a72a3a1707d90302c18b8ac535a5c8ef08424a1
SSDEEP

6144:ns4hk7qODNuFuGp54/TVdlK3hkOQmiJpelvL/kkZ0ritUn:nlXuYkVfQk5XpcAkUien

Score

7^/10

discovery persistence

Malware Config

Targets

- Target
  
  17082024_0148_seize.tar.hta
- Size
  
  464KB
- MD5
  
  ea715c7c1835b450cdb839bc5eefbd9b
- SHA1
  
  426740b7201149601dce3a2f9244073cd373d46d
- SHA256
  
  d1742efcb88caaceb940fe138c8408cad4de7b3ad8ecea117c06fc0e88a07335
- SHA512
  
  d635cc1a7a0c4903cd6f584e07c7a3bf31f715ef30dbf2b6a91e28cb1ca84999fe30dd939c6c4b60cb0468891a72a3a1707d90302c18b8ac535a5c8ef08424a1
- SSDEEP
  
  6144:ns4hk7qODNuFuGp54/TVdlK3hkOQmiJpelvL/kkZ0ritUn:nlXuYkVfQk5XpcAkUien
Score

7^/10

discovery persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2