4f1f10613df6529b041540792d811c439c8b00b838b722d80385b98de3cdfa39 | Triage

Sharing

General

Target

4f1f10613df6529b041540792d811c439c8b00b838b722d80385b98de3cdfa39
Size

654KB
Sample

221021-f72cxsdhh7
MD5

5374d956a84e3f6ebcf184a0ce91b880
SHA1

cd7baab7d897de1d61dbd45fd6e114ff7757ca5b
SHA256

4f1f10613df6529b041540792d811c439c8b00b838b722d80385b98de3cdfa39
SHA512

c13fb7372d0388a69a2861cf1dcc1197f3a4e0b06854866c1b831a557c70768e562642350f9422bed2be1b643683599d594f5c1c7caf1ce476cab6fd06c727bd
SSDEEP

12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  4f1f10613df6529b041540792d811c439c8b00b838b722d80385b98de3cdfa39
- Size
  
  654KB
- MD5
  
  5374d956a84e3f6ebcf184a0ce91b880
- SHA1
  
  cd7baab7d897de1d61dbd45fd6e114ff7757ca5b
- SHA256
  
  4f1f10613df6529b041540792d811c439c8b00b838b722d80385b98de3cdfa39
- SHA512
  
  c13fb7372d0388a69a2861cf1dcc1197f3a4e0b06854866c1b831a557c70768e562642350f9422bed2be1b643683599d594f5c1c7caf1ce476cab6fd06c727bd
- SSDEEP
  
  12288:OHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:ODgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2