058d227783080dafde4ba972c63e1c72edd8a1805d652035d76df835e0750c5c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

058d227783080dafde4ba972c63e1c72edd8a1805d652035d76df835e0750c5c
Size

1.1MB
Sample

231016-j15csacg3y
MD5

42e2171b2b88e9f370c16edf96fe0f13
SHA1

1c811a60f5d1ce6ef52badbd3c53b125e8cd3a45
SHA256

058d227783080dafde4ba972c63e1c72edd8a1805d652035d76df835e0750c5c
SHA512

e794450ee5da60c90ce8bb93b50a3cf19b04e4c661134e1c6684f2d23f4787a4514fef258fccc252ea29598bd3613bc767f502bf854338a6cbbb5b1b560028b0
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyR7:g5ApamAUAQ/lG4lBmFAvZ7

Score

7^/10

Malware Config

Targets

- Target
  
  058d227783080dafde4ba972c63e1c72edd8a1805d652035d76df835e0750c5c
- Size
  
  1.1MB
- MD5
  
  42e2171b2b88e9f370c16edf96fe0f13
- SHA1
  
  1c811a60f5d1ce6ef52badbd3c53b125e8cd3a45
- SHA256
  
  058d227783080dafde4ba972c63e1c72edd8a1805d652035d76df835e0750c5c
- SHA512
  
  e794450ee5da60c90ce8bb93b50a3cf19b04e4c661134e1c6684f2d23f4787a4514fef258fccc252ea29598bd3613bc767f502bf854338a6cbbb5b1b560028b0
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyR7:g5ApamAUAQ/lG4lBmFAvZ7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2