110dc2cdabc3ffcc924312b44e025072ec2641bf55bdcc8abdc426ddd9e8eced | Triage

Sharing

General

Target

110dc2cdabc3ffcc924312b44e025072ec2641bf55bdcc8abdc426ddd9e8eced
Size

18KB
Sample

221123-lt2z7acc84
MD5

2bafc99b1f149a88044963b577385f3b
SHA1

01e9d48f78fee3d507f61f22de55c71cb85b7b9d
SHA256

110dc2cdabc3ffcc924312b44e025072ec2641bf55bdcc8abdc426ddd9e8eced
SHA512

5c8f8152df5c7fdde1523dfed637ef2e40b66a2e9b1ae9994024602c95f2559cfb68a444c0ea191571314088a754319f853a9182527c7f3ad7313a14a6aedc5b
SSDEEP

192:BE99B9FDBX6VQUesOrVHGiKbrhpoyE+Q1H638I9+51Op:BEdDt6yUes8VmfID+Q1H63Vzp

Score

8^/10

Malware Config

Targets

- Target
  
  110dc2cdabc3ffcc924312b44e025072ec2641bf55bdcc8abdc426ddd9e8eced
- Size
  
  18KB
- MD5
  
  2bafc99b1f149a88044963b577385f3b
- SHA1
  
  01e9d48f78fee3d507f61f22de55c71cb85b7b9d
- SHA256
  
  110dc2cdabc3ffcc924312b44e025072ec2641bf55bdcc8abdc426ddd9e8eced
- SHA512
  
  5c8f8152df5c7fdde1523dfed637ef2e40b66a2e9b1ae9994024602c95f2559cfb68a444c0ea191571314088a754319f853a9182527c7f3ad7313a14a6aedc5b
- SSDEEP
  
  192:BE99B9FDBX6VQUesOrVHGiKbrhpoyE+Q1H638I9+51Op:BEdDt6yUes8VmfID+Q1H63Vzp
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2