687c7d8030b9f15bd2ef857116ef8c0c6fe83aa998ff32dab406beb0d4e759c2 | Triage

Sharing

General

Target

687c7d8030b9f15bd2ef857116ef8c0c6fe83aa998ff32dab406beb0d4e759c2
Size

22KB
Sample

221123-ltymrscc76
MD5

79b1f47c0dfd99f974d2920a381ad91f
SHA1

c440b90511dcbe337e04dd56ce582f8c7441e891
SHA256

687c7d8030b9f15bd2ef857116ef8c0c6fe83aa998ff32dab406beb0d4e759c2
SHA512

6b5796238b34e9245b78c58a92551372006138aab54ce224c06b4c2afae0172a984202b95c13298ffe89c2196aaaa859e7707b8c6c7615313a089f1791c7de06
SSDEEP

192:tbJVvBjraenIHX9+f1qulZjYpjorHq1oynIJguqv4E5rMdPqaDdDWLkqUN:tbTpjG7X9ehZjYp4K11p5rMhXh6UN

Score

8^/10

Malware Config

Targets

- Target
  
  687c7d8030b9f15bd2ef857116ef8c0c6fe83aa998ff32dab406beb0d4e759c2
- Size
  
  22KB
- MD5
  
  79b1f47c0dfd99f974d2920a381ad91f
- SHA1
  
  c440b90511dcbe337e04dd56ce582f8c7441e891
- SHA256
  
  687c7d8030b9f15bd2ef857116ef8c0c6fe83aa998ff32dab406beb0d4e759c2
- SHA512
  
  6b5796238b34e9245b78c58a92551372006138aab54ce224c06b4c2afae0172a984202b95c13298ffe89c2196aaaa859e7707b8c6c7615313a089f1791c7de06
- SSDEEP
  
  192:tbJVvBjraenIHX9+f1qulZjYpjorHq1oynIJguqv4E5rMdPqaDdDWLkqUN:tbTpjG7X9ehZjYp4K11p5rMhXh6UN
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2