b25ebe80092d4a61ef34866a5cb5028a7c3fc91456c23d2e2530784ea6509e01 | Triage

Sharing

General

Target

b25ebe80092d4a61ef34866a5cb5028a7c3fc91456c23d2e2530784ea6509e01
Size

1.1MB
Sample

231004-jtpczsab2v
MD5

798f272603d825380d833c27084ec0e9
SHA1

3d14177ec5a7086fb80aebe90a8a22d5a75f9ab2
SHA256

b25ebe80092d4a61ef34866a5cb5028a7c3fc91456c23d2e2530784ea6509e01
SHA512

f78386b268ca4ebf0f8b061b541e91ee2a1c0f6274f203f0f548934002e3e220eae9d3a94721fae1e2d390614d29940f79dadd74d23f10b0c7673c2fd5c6831d
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRT:g5ApamAUAQ/lG4lBmFAvZT

Score

7^/10

Malware Config

Targets

- Target
  
  b25ebe80092d4a61ef34866a5cb5028a7c3fc91456c23d2e2530784ea6509e01
- Size
  
  1.1MB
- MD5
  
  798f272603d825380d833c27084ec0e9
- SHA1
  
  3d14177ec5a7086fb80aebe90a8a22d5a75f9ab2
- SHA256
  
  b25ebe80092d4a61ef34866a5cb5028a7c3fc91456c23d2e2530784ea6509e01
- SHA512
  
  f78386b268ca4ebf0f8b061b541e91ee2a1c0f6274f203f0f548934002e3e220eae9d3a94721fae1e2d390614d29940f79dadd74d23f10b0c7673c2fd5c6831d
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRT:g5ApamAUAQ/lG4lBmFAvZT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2