170d447e268d1cfc0f1545ddd9d3794521a6977bede8ea50971b5113102ca340 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

170d447e268d1cfc0f1545ddd9d3794521a6977bede8ea50971b5113102ca340
Size

1.1MB
Sample

230921-kchpjsgg69
MD5

b2300e67e06b87d227b3861bfae86053
SHA1

fe2d57abce89a2ab6d46685c10fdd519d6e39d8b
SHA256

170d447e268d1cfc0f1545ddd9d3794521a6977bede8ea50971b5113102ca340
SHA512

062c4e4e4dc281c6e7e5c7ca2d7565e805d747ec47ebc848e11b404eeaf49f3939dd36ce09e8fb4a63b036d43fda23247101609177f9bcb2327bf05358824fdd
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qb:CcaClSFlG4ZM7QzMc

Score

7^/10

Malware Config

Targets

- Target
  
  170d447e268d1cfc0f1545ddd9d3794521a6977bede8ea50971b5113102ca340
- Size
  
  1.1MB
- MD5
  
  b2300e67e06b87d227b3861bfae86053
- SHA1
  
  fe2d57abce89a2ab6d46685c10fdd519d6e39d8b
- SHA256
  
  170d447e268d1cfc0f1545ddd9d3794521a6977bede8ea50971b5113102ca340
- SHA512
  
  062c4e4e4dc281c6e7e5c7ca2d7565e805d747ec47ebc848e11b404eeaf49f3939dd36ce09e8fb4a63b036d43fda23247101609177f9bcb2327bf05358824fdd
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Qb:CcaClSFlG4ZM7QzMc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2