81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48 | Triage

Sharing

General

Target

81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
Size

33KB
Sample

221123-lrnd1sfe4v
MD5

b064f8da86db1c091e623781ab464d8a
SHA1

600dd091a46f83c0ff03f1e7bfda8f7c1cc4f312
SHA256

81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
SHA512

9e09d6f85874a40ff83f3641cdafe8ad50094f4d4007aae6a5248bac56f8301a9fc08fca65ae77f9fd735fbb6689059f3f435a9d42c1d37a0f59ee7b5f9b0e30
SSDEEP

384:VQpmKKS+jqtF92NceQkVKF8z1zbNjCxk8:gm1S+IONcf0hNj+r

Score

8^/10

Malware Config

Targets

- Target
  
  81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
- Size
  
  33KB
- MD5
  
  b064f8da86db1c091e623781ab464d8a
- SHA1
  
  600dd091a46f83c0ff03f1e7bfda8f7c1cc4f312
- SHA256
  
  81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
- SHA512
  
  9e09d6f85874a40ff83f3641cdafe8ad50094f4d4007aae6a5248bac56f8301a9fc08fca65ae77f9fd735fbb6689059f3f435a9d42c1d37a0f59ee7b5f9b0e30
- SSDEEP
  
  384:VQpmKKS+jqtF92NceQkVKF8z1zbNjCxk8:gm1S+IONcf0hNj+r
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2