58132104efb2638c9f274d19e0ed5f9960632da52f9827c5afdfd90229ff9423 | Triage

Sharing

General

Target

58132104efb2638c9f274d19e0ed5f9960632da52f9827c5afdfd90229ff9423
Size

685KB
Sample

221202-3y44saah9z
MD5

95b51c28ce2f926b597bdf572250cd90
SHA1

18bece471bcd283e76c7e28c3c6a5eda59b20d8f
SHA256

58132104efb2638c9f274d19e0ed5f9960632da52f9827c5afdfd90229ff9423
SHA512

93008f0d344a71e5e9f357e8b90d5a0e7d925c596549f346df9e0b82d96a984e98bde0147bcb4a7b104bab620322336686ab97061c425183d91367c89b7415ec
SSDEEP

12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y

Score

8^/10

Malware Config

Targets

- Target
  
  58132104efb2638c9f274d19e0ed5f9960632da52f9827c5afdfd90229ff9423
- Size
  
  685KB
- MD5
  
  95b51c28ce2f926b597bdf572250cd90
- SHA1
  
  18bece471bcd283e76c7e28c3c6a5eda59b20d8f
- SHA256
  
  58132104efb2638c9f274d19e0ed5f9960632da52f9827c5afdfd90229ff9423
- SHA512
  
  93008f0d344a71e5e9f357e8b90d5a0e7d925c596549f346df9e0b82d96a984e98bde0147bcb4a7b104bab620322336686ab97061c425183d91367c89b7415ec
- SSDEEP
  
  12288:VHjcoe9PH96vB/fAuBcm9TyOE/xG3muGx44MG4Yx:VDgINfAuBcgcZG2uG24MG4Y
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2