1425dcfbe06fa76c7b1e491e4573afedd2a867e50650b9ad70e90ae872024821 | Triage

Sharing

General

Target

1425dcfbe06fa76c7b1e491e4573afedd2a867e50650b9ad70e90ae872024821
Size

24KB
Sample

221123-mqp2wseg33
MD5

a4ddc53c7de5a32c39cd1f516124a8d4
SHA1

9a7895d14e80d9c551f2e1d781a62a5a18053d4c
SHA256

1425dcfbe06fa76c7b1e491e4573afedd2a867e50650b9ad70e90ae872024821
SHA512

8c4393278e1dba723ba8126a65e6838db5a7cc44d641490c665cf90efd0a512aef1b0ce1bf42677a2e42ab2e996f4dd46b29c4f075a4f231ea6a860df4fb3f87
SSDEEP

192:eWpYS3ZLKARp/7BByQlBzEVZWwONAD+/Fo4SXTjaTmCTmKxiP1oynp/V+dDvmQkW:ecZLpJBEQyrOy+do4kfaqCKT1AfU

Score

8^/10

Malware Config

Targets

- Target
  
  1425dcfbe06fa76c7b1e491e4573afedd2a867e50650b9ad70e90ae872024821
- Size
  
  24KB
- MD5
  
  a4ddc53c7de5a32c39cd1f516124a8d4
- SHA1
  
  9a7895d14e80d9c551f2e1d781a62a5a18053d4c
- SHA256
  
  1425dcfbe06fa76c7b1e491e4573afedd2a867e50650b9ad70e90ae872024821
- SHA512
  
  8c4393278e1dba723ba8126a65e6838db5a7cc44d641490c665cf90efd0a512aef1b0ce1bf42677a2e42ab2e996f4dd46b29c4f075a4f231ea6a860df4fb3f87
- SSDEEP
  
  192:eWpYS3ZLKARp/7BByQlBzEVZWwONAD+/Fo4SXTjaTmCTmKxiP1oynp/V+dDvmQkW:ecZLpJBEQyrOy+do4kfaqCKT1AfU
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2