bcaf84c7c4a0d1eda5fd1c0268c5682439880bceca8decc0101f11341730bdbf | Triage

Sharing

General

Target

bcaf84c7c4a0d1eda5fd1c0268c5682439880bceca8decc0101f11341730bdbf
Size

1.1MB
Sample

221203-jq6g4aba4t
MD5

6258939b770c7710805ece7e4c6ff6db
SHA1

ca8a2ac342113094ff967f122d58e6492ce57070
SHA256

bcaf84c7c4a0d1eda5fd1c0268c5682439880bceca8decc0101f11341730bdbf
SHA512

76d5d41a7eebe373af9be26111e8da1d39dc70026d653930231846fa5a42f9366fa50be72746e611b8bd75736b8d7493a94332244617083493f2fcb94fbfa488
SSDEEP

24576:wo0peow6/GmPN760aABzSbE0nc4v2o6IsQPTYDIH17GwoYw:ITbVSrz6nWH1GP/

Score

8^/10

Malware Config

Targets

- Target
  
  bcaf84c7c4a0d1eda5fd1c0268c5682439880bceca8decc0101f11341730bdbf
- Size
  
  1.1MB
- MD5
  
  6258939b770c7710805ece7e4c6ff6db
- SHA1
  
  ca8a2ac342113094ff967f122d58e6492ce57070
- SHA256
  
  bcaf84c7c4a0d1eda5fd1c0268c5682439880bceca8decc0101f11341730bdbf
- SHA512
  
  76d5d41a7eebe373af9be26111e8da1d39dc70026d653930231846fa5a42f9366fa50be72746e611b8bd75736b8d7493a94332244617083493f2fcb94fbfa488
- SSDEEP
  
  24576:wo0peow6/GmPN760aABzSbE0nc4v2o6IsQPTYDIH17GwoYw:ITbVSrz6nWH1GP/
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2