ee18775e61321ded4fd87b6de47cea2ea417156fbf05adc7a6af90b504e0d1d0 | Triage

Sharing

General

Target

ee18775e61321ded4fd87b6de47cea2ea417156fbf05adc7a6af90b504e0d1d0
Size

3.4MB
Sample

241121-l9gdes1met
MD5

f4451d3793694ca0f1d4c7a9163bd5ac
SHA1

f10851c9903c836c5c66445741ac1fe5f576a433
SHA256

ee18775e61321ded4fd87b6de47cea2ea417156fbf05adc7a6af90b504e0d1d0
SHA512

d6b99dc40fa379201ae704330c14e8323dc7da510a073589079711bfb12ef4b6b77add11bd20685676883fe5ff509a6c33048f6b9e3d73d51174cb05c861b3aa
SSDEEP

98304:jfwYwA0ECxTdjmguMoabIujhjJ9Qwb79:L4PmGTj/9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ee18775e61321ded4fd87b6de47cea2ea417156fbf05adc7a6af90b504e0d1d0
- Size
  
  3.4MB
- MD5
  
  f4451d3793694ca0f1d4c7a9163bd5ac
- SHA1
  
  f10851c9903c836c5c66445741ac1fe5f576a433
- SHA256
  
  ee18775e61321ded4fd87b6de47cea2ea417156fbf05adc7a6af90b504e0d1d0
- SHA512
  
  d6b99dc40fa379201ae704330c14e8323dc7da510a073589079711bfb12ef4b6b77add11bd20685676883fe5ff509a6c33048f6b9e3d73d51174cb05c861b3aa
- SSDEEP
  
  98304:jfwYwA0ECxTdjmguMoabIujhjJ9Qwb79:L4PmGTj/9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2