5cc5793ae393e53862497445a7dd23c2fef3cc78f6dc6b453a8146ba556c0541 | Triage

Sharing

General

Target

5cc5793ae393e53862497445a7dd23c2fef3cc78f6dc6b453a8146ba556c0541
Size

41KB
Sample

220919-dv5tgaaael
MD5

8ddbe91599ae56d0423a886be34dcb91
SHA1

286607e7d4d8ccd8e8e0122da62f74ca4a7c29bf
SHA256

5cc5793ae393e53862497445a7dd23c2fef3cc78f6dc6b453a8146ba556c0541
SHA512

6ccef9e4020e2032c771726eeb0f52d7f6f86710f0004234feac71a46b939aa8d757f78d850a947c225ba3fb1b8c24abb4876b16da72a577f3a7a04b581c616e
SSDEEP

768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnAhoNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmU5Nzd

Score

8^/10

Malware Config

Targets

- Target
  
  5cc5793ae393e53862497445a7dd23c2fef3cc78f6dc6b453a8146ba556c0541
- Size
  
  41KB
- MD5
  
  8ddbe91599ae56d0423a886be34dcb91
- SHA1
  
  286607e7d4d8ccd8e8e0122da62f74ca4a7c29bf
- SHA256
  
  5cc5793ae393e53862497445a7dd23c2fef3cc78f6dc6b453a8146ba556c0541
- SHA512
  
  6ccef9e4020e2032c771726eeb0f52d7f6f86710f0004234feac71a46b939aa8d757f78d850a947c225ba3fb1b8c24abb4876b16da72a577f3a7a04b581c616e
- SSDEEP
  
  768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnAhoNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmU5Nzd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2