744575435e68e8b5fe951d951dfed37a24b4e97601c4ec84a9fe3d0e63882d9b | Triage

Sharing

General

Target

744575435e68e8b5fe951d951dfed37a24b4e97601c4ec84a9fe3d0e63882d9b
Size

1.3MB
Sample

221201-dzhjqseb3t
MD5

c9e071b18ca0aea0a89ebf0943f80e53
SHA1

8a22d1362983177821f3e2cdf8eed980777a72f9
SHA256

744575435e68e8b5fe951d951dfed37a24b4e97601c4ec84a9fe3d0e63882d9b
SHA512

bfd6f017ae605110bbd3dcd18516cc82a241bb0a146282d82b472c6ca25e897a04f93bf85fd6eb940e0aeabcc3fdb1e34eb61311829ca61bc52351f873c7f016
SSDEEP

24576:mbwlgdC2aus8fZHu/B6S+xWNU73Za15QQS6UEbk73HYLA:mD8cS0uqJj0bk73HYLA

Score

8^/10

Malware Config

Targets

- Target
  
  744575435e68e8b5fe951d951dfed37a24b4e97601c4ec84a9fe3d0e63882d9b
- Size
  
  1.3MB
- MD5
  
  c9e071b18ca0aea0a89ebf0943f80e53
- SHA1
  
  8a22d1362983177821f3e2cdf8eed980777a72f9
- SHA256
  
  744575435e68e8b5fe951d951dfed37a24b4e97601c4ec84a9fe3d0e63882d9b
- SHA512
  
  bfd6f017ae605110bbd3dcd18516cc82a241bb0a146282d82b472c6ca25e897a04f93bf85fd6eb940e0aeabcc3fdb1e34eb61311829ca61bc52351f873c7f016
- SSDEEP
  
  24576:mbwlgdC2aus8fZHu/B6S+xWNU73Za15QQS6UEbk73HYLA:mD8cS0uqJj0bk73HYLA
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2