e405443f694fd0fbb7bcab36fcce7c8c1ce5e73fed00ceceabb3c512eb085ff4 | Triage

Sharing

General

Target

e405443f694fd0fbb7bcab36fcce7c8c1ce5e73fed00ceceabb3c512eb085ff4
Size

1.1MB
Sample

230920-w1mtyshh8y
MD5

d8a3a1c0a608339845a0c868756c0a4d
SHA1

ec92c4e5d7974d52b5e01baf62ca605a03a283ab
SHA256

e405443f694fd0fbb7bcab36fcce7c8c1ce5e73fed00ceceabb3c512eb085ff4
SHA512

84e1da2a27bc2ec45273e9bbccac62cd87dc821a9ec1bc00398e1969436ad95810a65e8bd19f4c19d79ba7c170c38ae4cbb2cbd2c32bd7b6aa16bf44110b82ad
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QJ:CcaClSFlG4ZM7QzMa

Score

7^/10

Malware Config

Targets

- Target
  
  e405443f694fd0fbb7bcab36fcce7c8c1ce5e73fed00ceceabb3c512eb085ff4
- Size
  
  1.1MB
- MD5
  
  d8a3a1c0a608339845a0c868756c0a4d
- SHA1
  
  ec92c4e5d7974d52b5e01baf62ca605a03a283ab
- SHA256
  
  e405443f694fd0fbb7bcab36fcce7c8c1ce5e73fed00ceceabb3c512eb085ff4
- SHA512
  
  84e1da2a27bc2ec45273e9bbccac62cd87dc821a9ec1bc00398e1969436ad95810a65e8bd19f4c19d79ba7c170c38ae4cbb2cbd2c32bd7b6aa16bf44110b82ad
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QJ:CcaClSFlG4ZM7QzMa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2