ddd542e6b95055fdf4862375570a507e897f9fea59e7710830112d30822a6924 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ddd542e6b95055fdf4862375570a507e897f9fea59e7710830112d30822a6924
Size

36KB
Sample

221204-lqhgdagc35
MD5

069e8797dab105a63a772d0213b40597
SHA1

96bad1f9c75809f8abe38a4479db4750069de05a
SHA256

ddd542e6b95055fdf4862375570a507e897f9fea59e7710830112d30822a6924
SHA512

055c0ca361efcc1b078eb1f16a7e301ff0b0c9836b42ba85baa7ec61108e181a2604909a8954240af477118c89ea4d934efdc7c7b65eaa7257548f981c17af8a
SSDEEP

768:BtySqpQyfTS4J1vVcfEpUPP3mOcMJq5Ami64uiOE9ovkR9rK4e8Bg:mSqpQyfT5zcfNXmOlSiOuoMO4Z

Score

8^/10

Malware Config

Targets

- Target
  
  ddd542e6b95055fdf4862375570a507e897f9fea59e7710830112d30822a6924
- Size
  
  36KB
- MD5
  
  069e8797dab105a63a772d0213b40597
- SHA1
  
  96bad1f9c75809f8abe38a4479db4750069de05a
- SHA256
  
  ddd542e6b95055fdf4862375570a507e897f9fea59e7710830112d30822a6924
- SHA512
  
  055c0ca361efcc1b078eb1f16a7e301ff0b0c9836b42ba85baa7ec61108e181a2604909a8954240af477118c89ea4d934efdc7c7b65eaa7257548f981c17af8a
- SSDEEP
  
  768:BtySqpQyfTS4J1vVcfEpUPP3mOcMJq5Ami64uiOE9ovkR9rK4e8Bg:mSqpQyfT5zcfNXmOlSiOuoMO4Z
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2