bda3069326ffcc5604672a9997d5d01840b3b99887a694e0203baec8068d3033 | Triage

Sharing

General

Target

bda3069326ffcc5604672a9997d5d01840b3b99887a694e0203baec8068d3033
Size

1.1MB
Sample

220919-vdv2dahch2
MD5

baf314f34deeee553b5657596fcad8e3
SHA1

061bb107b14261e765636539bfff216daa41c27e
SHA256

bda3069326ffcc5604672a9997d5d01840b3b99887a694e0203baec8068d3033
SHA512

7624d2bd5a684046ff98dc055500d1d273eaefb1c55cb85f4cd523d57107d8a97bf95d813381a066c2463d66d0ccba2db052db54966abedc7250f652f0d90e10
SSDEEP

24576:wN6VgXEn06ADRDKiqd7gbVm33Sk6Li9ykMGR:k6Vx7Wlqd7gm33SCykME

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bda3069326ffcc5604672a9997d5d01840b3b99887a694e0203baec8068d3033
- Size
  
  1.1MB
- MD5
  
  baf314f34deeee553b5657596fcad8e3
- SHA1
  
  061bb107b14261e765636539bfff216daa41c27e
- SHA256
  
  bda3069326ffcc5604672a9997d5d01840b3b99887a694e0203baec8068d3033
- SHA512
  
  7624d2bd5a684046ff98dc055500d1d273eaefb1c55cb85f4cd523d57107d8a97bf95d813381a066c2463d66d0ccba2db052db54966abedc7250f652f0d90e10
- SSDEEP
  
  24576:wN6VgXEn06ADRDKiqd7gbVm33Sk6Li9ykMGR:k6Vx7Wlqd7gm33SCykME
Score

8^/10

persistence
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2