bdaca134cbac0f05f79385b6a3d2c73b3103dddd741609e09169b6d3f78d46b4 | Triage

Sharing

General

Target

bdaca134cbac0f05f79385b6a3d2c73b3103dddd741609e09169b6d3f78d46b4
Size

272KB
Sample

221129-st4mcaef8x
MD5

59be455678c1b62bd7d37f8f94640b90
SHA1

60ce2f4cb6ac7ac982f7cc4d88a06cd46443c614
SHA256

bdaca134cbac0f05f79385b6a3d2c73b3103dddd741609e09169b6d3f78d46b4
SHA512

1dadef7a0a45469d1117ee16dfff9173d76ad25a24c4ed7bb03d7ad786591f19214c830bbc4dd26f52566a1d22a480289c56b393280f375f2e1661283bf2d1c3
SSDEEP

6144:vlfFSArKoVWihZOnSZY9fIgzMzzFnOL9XOT07l:vLXrKo9ZAeIfIgozzFnYXOT0

Score

8^/10

Malware Config

Targets

- Target
  
  bdaca134cbac0f05f79385b6a3d2c73b3103dddd741609e09169b6d3f78d46b4
- Size
  
  272KB
- MD5
  
  59be455678c1b62bd7d37f8f94640b90
- SHA1
  
  60ce2f4cb6ac7ac982f7cc4d88a06cd46443c614
- SHA256
  
  bdaca134cbac0f05f79385b6a3d2c73b3103dddd741609e09169b6d3f78d46b4
- SHA512
  
  1dadef7a0a45469d1117ee16dfff9173d76ad25a24c4ed7bb03d7ad786591f19214c830bbc4dd26f52566a1d22a480289c56b393280f375f2e1661283bf2d1c3
- SSDEEP
  
  6144:vlfFSArKoVWihZOnSZY9fIgzMzzFnOL9XOT07l:vLXrKo9ZAeIfIgozzFnYXOT0
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2