4fa163a7021256ac59e7c5ae1fea21bbfa8f00e20452aa8f8fb250ddcb22924b | Triage

Sharing

General

Target

f_00015b
Size

5.2MB
Sample

241218-2zvq3awjfw
MD5

cc12644eeddedddf8a84ec8953ba48e0
SHA1

99de22870a5e955298f8bac0786d42ce725896db
SHA256

4fa163a7021256ac59e7c5ae1fea21bbfa8f00e20452aa8f8fb250ddcb22924b
SHA512

84fbc6a7d940670e4c16a98e54dc64abae36c910374455c8e1f6d1fe95fb6962092438d61f8c913dd9f1d2f746cfd14fa4499ecef177cd11857db79633bc880a
SSDEEP

98304:knLGP5bDcdyBMCacM2mLUu6rvuy3wTxEqgjajujNJ8OpzZ1oAiUiJ:wGvacBm6ru8KeOuXhZ1OUG

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  Device/HarddiskVolume3/Users/kusha/AppData/Local/Microsoft/Edge/User Data/Default/Cache/Cache_Data/f_00015b
- Size
  
  5.3MB
- MD5
  
  0a269c555e15783351e02629502bf141
- SHA1
  
  8fefa361e9b5bce4af0090093f51bcd02892b25d
- SHA256
  
  fff4b96876b0c78da96e57cf7ca1b0e0cbee4fde52047a9bde52e25b062d69ca
- SHA512
  
  b1784109f01d004f2f618e91695fc4ab9e64989cdedc39941cb1a4e7fed9032e096190269f3baefa590cc98552af5824d0f447a03213e4ae07cf55214758725a
- SSDEEP
  
  98304:Uc9HTcGO0ImBimas54Ub5ixTStxZi/l9K0+zLVasSe4JnzMpm+Gq:UcpYGO0IOqs57bUwxG9CVaskJIYE
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2