c98f14574b0e0462673d8f68b2036c61897f122ad0bab43876a6c7a937709c84 | Triage

Sharing

General

Target

c98f14574b0e0462673d8f68b2036c61897f122ad0bab43876a6c7a937709c84
Size

671KB
Sample

221002-mwn2sadcam
MD5

6d537427f6034e24ed5843b54110fb30
SHA1

78669f8ccd43394cca342f80be7f204febea52a9
SHA256

c98f14574b0e0462673d8f68b2036c61897f122ad0bab43876a6c7a937709c84
SHA512

dbcb64650b148ea45818be5947f3116ab5936c53dd80fb082939cbe4853d987514bf04f0f22e86a4f7791de97757a77f2a8bfefe9fe5602cded80984d71c1199
SSDEEP

12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  c98f14574b0e0462673d8f68b2036c61897f122ad0bab43876a6c7a937709c84
- Size
  
  671KB
- MD5
  
  6d537427f6034e24ed5843b54110fb30
- SHA1
  
  78669f8ccd43394cca342f80be7f204febea52a9
- SHA256
  
  c98f14574b0e0462673d8f68b2036c61897f122ad0bab43876a6c7a937709c84
- SHA512
  
  dbcb64650b148ea45818be5947f3116ab5936c53dd80fb082939cbe4853d987514bf04f0f22e86a4f7791de97757a77f2a8bfefe9fe5602cded80984d71c1199
- SSDEEP
  
  12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2