c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3 | Triage

Sharing

General

Target

c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3.lnk
Size

1KB
Sample

240821-m65ghsydmr
MD5

157284a93f3c5f488f4559db3537daea
SHA1

5a892c6cf26f90220d279d878206bf73f933f4dc
SHA256

c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3
SHA512

b9404e30414f275342458fd383ea76e821210606bf5c7ffa1d8f78f178e1d94e40e48e85a093ad629c24c754fe73aaefe8528360763222aca9ceddc313025c88

Score

8^/10

Malware Config

Targets

- Target
  
  c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3.lnk
- Size
  
  1KB
- MD5
  
  157284a93f3c5f488f4559db3537daea
- SHA1
  
  5a892c6cf26f90220d279d878206bf73f933f4dc
- SHA256
  
  c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3
- SHA512
  
  b9404e30414f275342458fd383ea76e821210606bf5c7ffa1d8f78f178e1d94e40e48e85a093ad629c24c754fe73aaefe8528360763222aca9ceddc313025c88
Score

8^/10
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2