d76569f075e8929f439783227c2643a29c67ed4d9dbe60f3fe7528b776b545c9 | Triage

Sharing

General

Target

d76569f075e8929f439783227c2643a29c67ed4d9dbe60f3fe7528b776b545c9
Size

13.8MB
Sample

230921-ccmdqseb26
MD5

5cd7c39074b6e308f1c028b498e3a7a1
SHA1

1ef50c5bec07a8d123fa6ae17aad23a47007bd42
SHA256

d76569f075e8929f439783227c2643a29c67ed4d9dbe60f3fe7528b776b545c9
SHA512

057418afefc717d9d755de4e325c0e2146addd28f8edfa8fac93eb15ddb37d6ef802053f2881294396ca7002144dbf4fd6a7c1f95e2b53e0572d3a6ac09759cb
SSDEEP

98304:rPb0eFzKzpyeDMFGP9eZVxiXSd+uILq/3k/XB2fgNKryCXDT+rvy80GTSD7lofQ5:zbdWzQFGF4h+l0U+SKVsybof6

Score

7^/10

Malware Config

Targets

- Target
  
  d76569f075e8929f439783227c2643a29c67ed4d9dbe60f3fe7528b776b545c9
- Size
  
  13.8MB
- MD5
  
  5cd7c39074b6e308f1c028b498e3a7a1
- SHA1
  
  1ef50c5bec07a8d123fa6ae17aad23a47007bd42
- SHA256
  
  d76569f075e8929f439783227c2643a29c67ed4d9dbe60f3fe7528b776b545c9
- SHA512
  
  057418afefc717d9d755de4e325c0e2146addd28f8edfa8fac93eb15ddb37d6ef802053f2881294396ca7002144dbf4fd6a7c1f95e2b53e0572d3a6ac09759cb
- SSDEEP
  
  98304:rPb0eFzKzpyeDMFGP9eZVxiXSd+uILq/3k/XB2fgNKryCXDT+rvy80GTSD7lofQ5:zbdWzQFGF4h+l0U+SKVsybof6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2