3158532a502cb9d914df70ecb8a8237ceac1d6b26b5af66f6de67436aa5d3b26 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

CustomNotepad.exe
Size

140.3MB
Sample

241012-xrbwrswfjb
MD5

481067d55301f582a8133ea9d8fcb2e0
SHA1

889661acb8b1640d39504120efb20e73b2a458e9
SHA256

3158532a502cb9d914df70ecb8a8237ceac1d6b26b5af66f6de67436aa5d3b26
SHA512

eb705b35c435b04755195d61002df516ac0d6712ec8c17d0422b356567dd0838c72e73af8f0404a8e6c679a5109584fb7bf9eda414f662572de49448e101bdb8
SSDEEP

786432:2bE5tJfgr13NVNnPmVvJpXPzvgBoZWSifGwdCnTtLwSTRpf4P1wT1EnaZI:2gL1grxN3M7v75wG8DEI

Score

7^/10

Malware Config

Targets

- Target
  
  CustomNotepad.exe
- Size
  
  140.3MB
- MD5
  
  481067d55301f582a8133ea9d8fcb2e0
- SHA1
  
  889661acb8b1640d39504120efb20e73b2a458e9
- SHA256
  
  3158532a502cb9d914df70ecb8a8237ceac1d6b26b5af66f6de67436aa5d3b26
- SHA512
  
  eb705b35c435b04755195d61002df516ac0d6712ec8c17d0422b356567dd0838c72e73af8f0404a8e6c679a5109584fb7bf9eda414f662572de49448e101bdb8
- SSDEEP
  
  786432:2bE5tJfgr13NVNnPmVvJpXPzvgBoZWSifGwdCnTtLwSTRpf4P1wT1EnaZI:2gL1grxN3M7v75wG8DEI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2