5c1263b63c4565ed2ba14de305d29475c94640903a26aef14dd44f77072089cf | Triage

Sharing

General

Target

5c1263b63c4565ed2ba14de305d29475c94640903a26aef14dd44f77072089cf
Size

635KB
Sample

221020-vy1glafbdq
MD5

a064fb6dbea822acd7b7aa7e40e0fff0
SHA1

1dd3a254846c51df8702689dea0997f5b486fca1
SHA256

5c1263b63c4565ed2ba14de305d29475c94640903a26aef14dd44f77072089cf
SHA512

bc5668d22f49bd319b25aa5815b91b8fd798490d2bca2c96d814fadc5011f2988db5fb728b5f0bd51dc82c23e75c838ccf70baff31970f523f52042c73ff6856
SSDEEP

12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  5c1263b63c4565ed2ba14de305d29475c94640903a26aef14dd44f77072089cf
- Size
  
  635KB
- MD5
  
  a064fb6dbea822acd7b7aa7e40e0fff0
- SHA1
  
  1dd3a254846c51df8702689dea0997f5b486fca1
- SHA256
  
  5c1263b63c4565ed2ba14de305d29475c94640903a26aef14dd44f77072089cf
- SHA512
  
  bc5668d22f49bd319b25aa5815b91b8fd798490d2bca2c96d814fadc5011f2988db5fb728b5f0bd51dc82c23e75c838ccf70baff31970f523f52042c73ff6856
- SSDEEP
  
  12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2