3fe031b70d06316e2a9d4224fb1345d81aee91c2b81afbe8b7ab484da93be25f | Triage

Sharing

General

Target

3fe031b70d06316e2a9d4224fb1345d81aee91c2b81afbe8b7ab484da93be25f
Size

1.1MB
Sample

230831-jwelkade8v
MD5

4c8f6b4e6cc6d938861516634fc09d6d
SHA1

c087798109c8a308aaf64262d69933f08c3361e5
SHA256

3fe031b70d06316e2a9d4224fb1345d81aee91c2b81afbe8b7ab484da93be25f
SHA512

9730bf9a9940c4975634f770c1fd1280f939808c806dece9c29cc4c8924a58ce3280967d45484bd6ec34e34a3abda080455007ca80a6d5ac9c490fff6e938c9a
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRS:g5ApamAUAQ/lG4lBmFAvZS

Score

7^/10

Malware Config

Targets

- Target
  
  3fe031b70d06316e2a9d4224fb1345d81aee91c2b81afbe8b7ab484da93be25f
- Size
  
  1.1MB
- MD5
  
  4c8f6b4e6cc6d938861516634fc09d6d
- SHA1
  
  c087798109c8a308aaf64262d69933f08c3361e5
- SHA256
  
  3fe031b70d06316e2a9d4224fb1345d81aee91c2b81afbe8b7ab484da93be25f
- SHA512
  
  9730bf9a9940c4975634f770c1fd1280f939808c806dece9c29cc4c8924a58ce3280967d45484bd6ec34e34a3abda080455007ca80a6d5ac9c490fff6e938c9a
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRS:g5ApamAUAQ/lG4lBmFAvZS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2