f45caf5bc0ccc924a6b930929572440015bfad75e9830c0e537d09b96ca33ab3 | Triage

Sharing

General

Target

f45caf5bc0ccc924a6b930929572440015bfad75e9830c0e537d09b96ca33ab3
Size

556KB
Sample

221123-zwl9eadh88
MD5

440a8a2020ca11f2c0afec0a7fc5f720
SHA1

6004c528c9332071855ed0a555c3ff5624f51dd7
SHA256

f45caf5bc0ccc924a6b930929572440015bfad75e9830c0e537d09b96ca33ab3
SHA512

00dbc924aaa5db9ddccf31a046340c92fccbc593a23151f1703fa5f0f0958ce9203cdc0bbf1cf3e52ff47b06090c9d239e72baab30f81e470669165239ad2075
SSDEEP

12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  f45caf5bc0ccc924a6b930929572440015bfad75e9830c0e537d09b96ca33ab3
- Size
  
  556KB
- MD5
  
  440a8a2020ca11f2c0afec0a7fc5f720
- SHA1
  
  6004c528c9332071855ed0a555c3ff5624f51dd7
- SHA256
  
  f45caf5bc0ccc924a6b930929572440015bfad75e9830c0e537d09b96ca33ab3
- SHA512
  
  00dbc924aaa5db9ddccf31a046340c92fccbc593a23151f1703fa5f0f0958ce9203cdc0bbf1cf3e52ff47b06090c9d239e72baab30f81e470669165239ad2075
- SSDEEP
  
  12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2