26b057efd2110d8faa6dcc2919194201556c2c8af6dd51c5034bcbc1323833d6 | Triage

Sharing

General

Target

26b057efd2110d8faa6dcc2919194201556c2c8af6dd51c5034bcbc1323833d6
Size

316KB
Sample

221130-3szbcaah4t
MD5

16216bff4e58628a2af0185a2a2452b0
SHA1

381c67b89f4480c65495403a71dd5bda451a96e6
SHA256

26b057efd2110d8faa6dcc2919194201556c2c8af6dd51c5034bcbc1323833d6
SHA512

4b703fd6b4db2a3cab0246223751501d24136b1aa3b008a6eb1f7b7e27ce43b026c657d74b5521a8522707be92996f682c0337e33491850111eafc4a6989fb7d
SSDEEP

6144:PU0USPuHKKAsgBZg178Z+Snk6Fpwlw8RmuZSz8VdPbMK95BL7jGjFUHpJ+MBX:2SPXSzJSk6FpwlzmupVdjx5B/mFYJ++

Score

8^/10

Malware Config

Targets

- Target
  
  26b057efd2110d8faa6dcc2919194201556c2c8af6dd51c5034bcbc1323833d6
- Size
  
  316KB
- MD5
  
  16216bff4e58628a2af0185a2a2452b0
- SHA1
  
  381c67b89f4480c65495403a71dd5bda451a96e6
- SHA256
  
  26b057efd2110d8faa6dcc2919194201556c2c8af6dd51c5034bcbc1323833d6
- SHA512
  
  4b703fd6b4db2a3cab0246223751501d24136b1aa3b008a6eb1f7b7e27ce43b026c657d74b5521a8522707be92996f682c0337e33491850111eafc4a6989fb7d
- SSDEEP
  
  6144:PU0USPuHKKAsgBZg178Z+Snk6Fpwlw8RmuZSz8VdPbMK95BL7jGjFUHpJ+MBX:2SPXSzJSk6FpwlzmupVdjx5B/mFYJ++
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2