1e976659700390353dd8517925fd69eca4e8b3bd959745b326b9699bc3ec22fb | Triage

Sharing

General

Target

1e976659700390353dd8517925fd69eca4e8b3bd959745b326b9699bc3ec22fb
Size

60KB
Sample

221123-yg58asab55
MD5

47c2a38d3d4bb292b92177a47242dbd4
SHA1

bb27c882948d69bc9e6263eacbd07ffa05bda6e0
SHA256

1e976659700390353dd8517925fd69eca4e8b3bd959745b326b9699bc3ec22fb
SHA512

341387e03043fa47910139e80e75622f4bb633cd38d1ab36b39827d5289ce70430e315be8ddd5d3713f83348ed2687f2394596592064822c1bcdc2f68a151919
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/v4ptqrmX+lE8QG+e:V3c1fP4AJJv45SlwS

Score

7^/10

Malware Config

Targets

- Target
  
  1e976659700390353dd8517925fd69eca4e8b3bd959745b326b9699bc3ec22fb
- Size
  
  60KB
- MD5
  
  47c2a38d3d4bb292b92177a47242dbd4
- SHA1
  
  bb27c882948d69bc9e6263eacbd07ffa05bda6e0
- SHA256
  
  1e976659700390353dd8517925fd69eca4e8b3bd959745b326b9699bc3ec22fb
- SHA512
  
  341387e03043fa47910139e80e75622f4bb633cd38d1ab36b39827d5289ce70430e315be8ddd5d3713f83348ed2687f2394596592064822c1bcdc2f68a151919
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/v4ptqrmX+lE8QG+e:V3c1fP4AJJv45SlwS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2