e8c88fc8a87dfb834a0ff21d3c1f3a422424f12a2d3d574c4b87690b29d7426b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8c88fc8a87dfb834a0ff21d3c1f3a422424f12a2d3d574c4b87690b29d7426b
Size

18KB
Sample

221011-tshh6adda8
MD5

6df3a7a39d328d7fa608c711fbaf0276
SHA1

577b11958509e86e022c71f35fde5cf0341eab58
SHA256

e8c88fc8a87dfb834a0ff21d3c1f3a422424f12a2d3d574c4b87690b29d7426b
SHA512

3233473c81fc86cb12e626af2d67a865fd3c1beffb497b9ba3ce74411f11c913b102cf4db43beef1cfbbf0286ee3db5b5ad2bdf83b44f27c80e646f00ac5a537
SSDEEP

192:U94mRsqG5eyCoAbzhqsCViJdBFPh5LGynK/tDtdgbBiSvvDgy8vojyvmek:U993G5tC1HuQRFPh5LO/DiR/

Score

8^/10

Malware Config

Targets

- Target
  
  e8c88fc8a87dfb834a0ff21d3c1f3a422424f12a2d3d574c4b87690b29d7426b
- Size
  
  18KB
- MD5
  
  6df3a7a39d328d7fa608c711fbaf0276
- SHA1
  
  577b11958509e86e022c71f35fde5cf0341eab58
- SHA256
  
  e8c88fc8a87dfb834a0ff21d3c1f3a422424f12a2d3d574c4b87690b29d7426b
- SHA512
  
  3233473c81fc86cb12e626af2d67a865fd3c1beffb497b9ba3ce74411f11c913b102cf4db43beef1cfbbf0286ee3db5b5ad2bdf83b44f27c80e646f00ac5a537
- SSDEEP
  
  192:U94mRsqG5eyCoAbzhqsCViJdBFPh5LGynK/tDtdgbBiSvvDgy8vojyvmek:U993G5tC1HuQRFPh5LO/DiR/
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2