84ca015b1ccb2ce91299509a05c3e20931a85f0cca646d472e486e95a46e9822 | Triage

Sharing

General

Target

84ca015b1ccb2ce91299509a05c3e20931a85f0cca646d472e486e95a46e9822
Size

41KB
Sample

221123-l2c12agb9t
MD5

5ed9a5837a0f99733bc5db1e9367a14c
SHA1

bef3ee12140d98f50a811ff129c714ab33c19056
SHA256

84ca015b1ccb2ce91299509a05c3e20931a85f0cca646d472e486e95a46e9822
SHA512

d8c3f120df697fcac34a36a578cdc330461e5029e0fccf15e816a79997f23a9029880e8096623b87e6e0623f9a48c495b96aab45c313e3c8c91816d0a0791664
SSDEEP

768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnToNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUkNzd

Score

8^/10

Malware Config

Targets

- Target
  
  84ca015b1ccb2ce91299509a05c3e20931a85f0cca646d472e486e95a46e9822
- Size
  
  41KB
- MD5
  
  5ed9a5837a0f99733bc5db1e9367a14c
- SHA1
  
  bef3ee12140d98f50a811ff129c714ab33c19056
- SHA256
  
  84ca015b1ccb2ce91299509a05c3e20931a85f0cca646d472e486e95a46e9822
- SHA512
  
  d8c3f120df697fcac34a36a578cdc330461e5029e0fccf15e816a79997f23a9029880e8096623b87e6e0623f9a48c495b96aab45c313e3c8c91816d0a0791664
- SSDEEP
  
  768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnToNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUkNzd
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2