a26c24d292b00e5456de51fd6e8646d33dfc6cf9ab9fc9565c8f5aec76439ad5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a26c24d292b00e5456de51fd6e8646d33dfc6cf9ab9fc9565c8f5aec76439ad5
Size

68KB
Sample

221205-mgpd1aee2t
MD5

264d41a8ecbd438732eedd1f06cc061d
SHA1

08b3f290e171710af980f427f1575e6f4999d426
SHA256

a26c24d292b00e5456de51fd6e8646d33dfc6cf9ab9fc9565c8f5aec76439ad5
SHA512

389ffad6efc22c0af0f0aee9ea55746b9ffbf039fc5b0a8ffaa42155eea65218df9d31c6245ace7b0ab40cfcd3634337753f6b6d6a6a19418f1daa2f0716a67d
SSDEEP

1536:fW1ZIZqI9opm6AIHIjzmU3Nzdch2kG7wi8GLEoX+1ZALuKOSPN8:mxI9oYhIqqUBdcywSnX+wLfOSP

Score

8^/10

Malware Config

Targets

- Target
  
  a26c24d292b00e5456de51fd6e8646d33dfc6cf9ab9fc9565c8f5aec76439ad5
- Size
  
  68KB
- MD5
  
  264d41a8ecbd438732eedd1f06cc061d
- SHA1
  
  08b3f290e171710af980f427f1575e6f4999d426
- SHA256
  
  a26c24d292b00e5456de51fd6e8646d33dfc6cf9ab9fc9565c8f5aec76439ad5
- SHA512
  
  389ffad6efc22c0af0f0aee9ea55746b9ffbf039fc5b0a8ffaa42155eea65218df9d31c6245ace7b0ab40cfcd3634337753f6b6d6a6a19418f1daa2f0716a67d
- SSDEEP
  
  1536:fW1ZIZqI9opm6AIHIjzmU3Nzdch2kG7wi8GLEoX+1ZALuKOSPN8:mxI9oYhIqqUBdcywSnX+wLfOSP
Score

8^/10
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2