cd7579303312b07e7e35838cda30b2ced53633b295609e894da2b8148874b8e1 | Triage

Sharing

General

Target

cd7579303312b07e7e35838cda30b2ced53633b295609e894da2b8148874b8e1
Size

625KB
Sample

221012-w1ehksfbd8
MD5

77249eebf06217f1974fadc23b733be0
SHA1

bb3f6b169bba129f0e2e3ceb29b539ad75c76bba
SHA256

cd7579303312b07e7e35838cda30b2ced53633b295609e894da2b8148874b8e1
SHA512

df8bb8c382dacf3f129fbdf0637388ab1f795edb89c6dde2b5aa154a149f54349e611b93a1cb0ea9f34762f8549e0bbb11e3f722c95f243aa23512c61cf950c8
SSDEEP

12288:W5hAPjPHr/wiPkEr89Eogw4VoH4cjnoteFlLD1AVs3Gb5oVjcD:WgLr4w9beH4enIeLFAVwGV4S

Score

8^/10

Malware Config

Targets

- Target
  
  cd7579303312b07e7e35838cda30b2ced53633b295609e894da2b8148874b8e1
- Size
  
  625KB
- MD5
  
  77249eebf06217f1974fadc23b733be0
- SHA1
  
  bb3f6b169bba129f0e2e3ceb29b539ad75c76bba
- SHA256
  
  cd7579303312b07e7e35838cda30b2ced53633b295609e894da2b8148874b8e1
- SHA512
  
  df8bb8c382dacf3f129fbdf0637388ab1f795edb89c6dde2b5aa154a149f54349e611b93a1cb0ea9f34762f8549e0bbb11e3f722c95f243aa23512c61cf950c8
- SSDEEP
  
  12288:W5hAPjPHr/wiPkEr89Eogw4VoH4cjnoteFlLD1AVs3Gb5oVjcD:WgLr4w9beH4enIeLFAVwGV4S
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2