8c06296d47080455be8c9ef17c36723cd4e58ef1b952f43263c44e43588606bb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8c06296d47080455be8c9ef17c36723cd4e58ef1b952f43263c44e43588606bb
Size

776KB
Sample

221203-j6q3cabe91
MD5

d905e82fe84f089b70c37a67ec2d548b
SHA1

37592cadb269d41558024b6ea516353785ef43c3
SHA256

8c06296d47080455be8c9ef17c36723cd4e58ef1b952f43263c44e43588606bb
SHA512

dd78e32bb3cbec0c518d378880c852301383d9aa2a6ffbc463a29d9446419d26d97e7e0106f7db8b2166f8d5b8850bb8ce9bc0e3e87f8157b06f7cf2b89053aa
SSDEEP

12288:Qco398Nb9ZsbxCIRnwuRtVH7jUkcaqkOzWKiKx1DLSpq:Qcm7jw+tVHvTMzWKbnDgq

Score

8^/10

Malware Config

Targets

- Target
  
  8c06296d47080455be8c9ef17c36723cd4e58ef1b952f43263c44e43588606bb
- Size
  
  776KB
- MD5
  
  d905e82fe84f089b70c37a67ec2d548b
- SHA1
  
  37592cadb269d41558024b6ea516353785ef43c3
- SHA256
  
  8c06296d47080455be8c9ef17c36723cd4e58ef1b952f43263c44e43588606bb
- SHA512
  
  dd78e32bb3cbec0c518d378880c852301383d9aa2a6ffbc463a29d9446419d26d97e7e0106f7db8b2166f8d5b8850bb8ce9bc0e3e87f8157b06f7cf2b89053aa
- SSDEEP
  
  12288:Qco398Nb9ZsbxCIRnwuRtVH7jUkcaqkOzWKiKx1DLSpq:Qcm7jw+tVHvTMzWKbnDgq
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2