de0e8aaa23a718d0207558c60b36270e900775cf8a1ecfb7e89e3a3d6fd1d351 | Triage

Sharing

General

Target

de0e8aaa23a718d0207558c60b36270e900775cf8a1ecfb7e89e3a3d6fd1d351
Size

82KB
Sample

221123-p5q9lsgb4s
MD5

ecf20a637b33a61f4eae6dadc2b0e1f9
SHA1

55519b8bb5ee5a27f932aa268193a34a292c9d70
SHA256

de0e8aaa23a718d0207558c60b36270e900775cf8a1ecfb7e89e3a3d6fd1d351
SHA512

446553c8706bf5f4708134bb374f9b77d38563b92a5e02b58fdcd17ca84ebbb58c906be484e7eeab8234f8903101577f17928b1a2e498baa44bb7aeba81d0d30
SSDEEP

1536:v81yXR5WQDW4ep7HKMbwM3kPARpY1Ihce/CODuvogVMlCuvogZMlaHgvaU0V:v81yX7iRpueaOVHgvaU0V

Score

8^/10

Malware Config

Targets

- Target
  
  de0e8aaa23a718d0207558c60b36270e900775cf8a1ecfb7e89e3a3d6fd1d351
- Size
  
  82KB
- MD5
  
  ecf20a637b33a61f4eae6dadc2b0e1f9
- SHA1
  
  55519b8bb5ee5a27f932aa268193a34a292c9d70
- SHA256
  
  de0e8aaa23a718d0207558c60b36270e900775cf8a1ecfb7e89e3a3d6fd1d351
- SHA512
  
  446553c8706bf5f4708134bb374f9b77d38563b92a5e02b58fdcd17ca84ebbb58c906be484e7eeab8234f8903101577f17928b1a2e498baa44bb7aeba81d0d30
- SSDEEP
  
  1536:v81yXR5WQDW4ep7HKMbwM3kPARpY1Ihce/CODuvogVMlCuvogZMlaHgvaU0V:v81yX7iRpueaOVHgvaU0V
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2