15158ad0ed743521af3e9063355c2a0b4faa0ece91abd22e4da32b2c0033fca7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15158ad0ed743521af3e9063355c2a0b4faa0ece91abd22e4da32b2c0033fca7
Size

1.1MB
Sample

231012-jpeyraha89
MD5

5d9a5af51115f6b6420d0498d43475e6
SHA1

18b5ac4bf60632b436e7e9896d81cf42c431680e
SHA256

15158ad0ed743521af3e9063355c2a0b4faa0ece91abd22e4da32b2c0033fca7
SHA512

d0726e45cba3da4421f55f3cd05934533defbc419f94354cb7c4a895b63344c603af029f29e6dba457db01aa71e09df728ec773c38ddcd5316e25bacbeab6ce5
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzMa

Score

7^/10

Malware Config

Targets

- Target
  
  15158ad0ed743521af3e9063355c2a0b4faa0ece91abd22e4da32b2c0033fca7
- Size
  
  1.1MB
- MD5
  
  5d9a5af51115f6b6420d0498d43475e6
- SHA1
  
  18b5ac4bf60632b436e7e9896d81cf42c431680e
- SHA256
  
  15158ad0ed743521af3e9063355c2a0b4faa0ece91abd22e4da32b2c0033fca7
- SHA512
  
  d0726e45cba3da4421f55f3cd05934533defbc419f94354cb7c4a895b63344c603af029f29e6dba457db01aa71e09df728ec773c38ddcd5316e25bacbeab6ce5
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzMa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2