7ff4bd6da8f4c8b9b0d63a1f6df01b2cca41a4fe6673acbb86e71fba6d94ce88 | Triage

Sharing

General

Target

7ff4bd6da8f4c8b9b0d63a1f6df01b2cca41a4fe6673acbb86e71fba6d94ce88
Size

1.1MB
Sample

231006-hk7yashe5x
MD5

1464e20ca360d65388a0b0bfd15d843d
SHA1

a1f667570c86cb9b1badb50926e1469bc4c5f3bb
SHA256

7ff4bd6da8f4c8b9b0d63a1f6df01b2cca41a4fe6673acbb86e71fba6d94ce88
SHA512

bf96c96407c7dc2c861c71e1201539d7a9a88af61816a6f837734985ecc44139c1aed83e9902f68a1f7241164f1d2bd49acbac263220ea71b6aac404a218ceb6
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRO:g5ApamAUAQ/lG4lBmFAvZO

Score

7^/10

Malware Config

Targets

- Target
  
  7ff4bd6da8f4c8b9b0d63a1f6df01b2cca41a4fe6673acbb86e71fba6d94ce88
- Size
  
  1.1MB
- MD5
  
  1464e20ca360d65388a0b0bfd15d843d
- SHA1
  
  a1f667570c86cb9b1badb50926e1469bc4c5f3bb
- SHA256
  
  7ff4bd6da8f4c8b9b0d63a1f6df01b2cca41a4fe6673acbb86e71fba6d94ce88
- SHA512
  
  bf96c96407c7dc2c861c71e1201539d7a9a88af61816a6f837734985ecc44139c1aed83e9902f68a1f7241164f1d2bd49acbac263220ea71b6aac404a218ceb6
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRO:g5ApamAUAQ/lG4lBmFAvZO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2