fe74dbf2bb254274f894167492ff04aa874b365a1139448d997312e30693961e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe74dbf2bb254274f894167492ff04aa874b365a1139448d997312e30693961e
Size

1.2MB
Sample

231014-1xp75aea24
MD5

cd83f173f4d29f1586c6cb7964aa4849
SHA1

1f5992c4b7e6a28f6c581e940c457bede76947db
SHA256

fe74dbf2bb254274f894167492ff04aa874b365a1139448d997312e30693961e
SHA512

55efddacd721290657b8a22c91d1382a2eecab6db083ddbc3e5c9bf82319e16d0135693ee953c632d1853ba904973446e9de3712f1c35bf1a2c0c5ea7f0618a6
SSDEEP

24576:vlAzF5dI2vYKWb6Dsq3P3K4XY0esxUAUbwvaoslG45wyvCj8z7mw4:voep0hUbSklG45lvMc4

Score

7^/10

Malware Config

Targets

- Target
  
  fe74dbf2bb254274f894167492ff04aa874b365a1139448d997312e30693961e
- Size
  
  1.2MB
- MD5
  
  cd83f173f4d29f1586c6cb7964aa4849
- SHA1
  
  1f5992c4b7e6a28f6c581e940c457bede76947db
- SHA256
  
  fe74dbf2bb254274f894167492ff04aa874b365a1139448d997312e30693961e
- SHA512
  
  55efddacd721290657b8a22c91d1382a2eecab6db083ddbc3e5c9bf82319e16d0135693ee953c632d1853ba904973446e9de3712f1c35bf1a2c0c5ea7f0618a6
- SSDEEP
  
  24576:vlAzF5dI2vYKWb6Dsq3P3K4XY0esxUAUbwvaoslG45wyvCj8z7mw4:voep0hUbSklG45lvMc4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2