bc155820215c6ce3654b982db51ad60077dd9ddd4bebc1f495e2c4416ea22c8d | Triage

Sharing

General

Target

bc155820215c6ce3654b982db51ad60077dd9ddd4bebc1f495e2c4416ea22c8d
Size

633KB
Sample

221011-f5w1esgbg3
MD5

793f06cbfa215701eaf0f13e84fbdf10
SHA1

81a18ec22a465ee53eae08c8868cf0c6e321097e
SHA256

bc155820215c6ce3654b982db51ad60077dd9ddd4bebc1f495e2c4416ea22c8d
SHA512

fa82b1ac15e9a92a019639c0b06a6185f8b232fb70744c358fbc8688ff5c8b4d0adf2d6df7e7d14cce8931e6574506772c6eca45f1ab4ba9e8bc3d0030a21bed
SSDEEP

12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  bc155820215c6ce3654b982db51ad60077dd9ddd4bebc1f495e2c4416ea22c8d
- Size
  
  633KB
- MD5
  
  793f06cbfa215701eaf0f13e84fbdf10
- SHA1
  
  81a18ec22a465ee53eae08c8868cf0c6e321097e
- SHA256
  
  bc155820215c6ce3654b982db51ad60077dd9ddd4bebc1f495e2c4416ea22c8d
- SHA512
  
  fa82b1ac15e9a92a019639c0b06a6185f8b232fb70744c358fbc8688ff5c8b4d0adf2d6df7e7d14cce8931e6574506772c6eca45f1ab4ba9e8bc3d0030a21bed
- SSDEEP
  
  12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2