81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48 | Triage

Sharing

General

Target

81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
Size

33KB
Sample

221123-lrnd1sfe4v
MD5

b064f8da86db1c091e623781ab464d8a
SHA1

600dd091a46f83c0ff03f1e7bfda8f7c1cc4f312
SHA256

81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
SHA512

9e09d6f85874a40ff83f3641cdafe8ad50094f4d4007aae6a5248bac56f8301a9fc08fca65ae77f9fd735fbb6689059f3f435a9d42c1d37a0f59ee7b5f9b0e30
SSDEEP

384:VQpmKKS+jqtF92NceQkVKF8z1zbNjCxk8:gm1S+IONcf0hNj+r

Score

8^/10

Malware Config

Targets

- Target
  
  81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
- Size
  
  33KB
- MD5
  
  b064f8da86db1c091e623781ab464d8a
- SHA1
  
  600dd091a46f83c0ff03f1e7bfda8f7c1cc4f312
- SHA256
  
  81582bbaaa100d695cca763cdb9791e280e4153bc3215f2f39d356408018aa48
- SHA512
  
  9e09d6f85874a40ff83f3641cdafe8ad50094f4d4007aae6a5248bac56f8301a9fc08fca65ae77f9fd735fbb6689059f3f435a9d42c1d37a0f59ee7b5f9b0e30
- SSDEEP
  
  384:VQpmKKS+jqtF92NceQkVKF8z1zbNjCxk8:gm1S+IONcf0hNj+r
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2