5bb38808d837f44b2516d636f1f726fdf58168ea417d96c52110536b61e5d831 | Triage

Sharing

General

Target

5bb38808d837f44b2516d636f1f726fdf58168ea417d96c52110536b61e5d831
Size

1.1MB
Sample

231113-hpx9nabd72
MD5

42962ddca5c65d4ab9996c733ce7944e
SHA1

7bb6e1d0eef7bae2ccded2c0381581187f9f4521
SHA256

5bb38808d837f44b2516d636f1f726fdf58168ea417d96c52110536b61e5d831
SHA512

26442a198e3f406c8ee57314a5783965e258d01f909da478470d2def66cdad6a466fc2471e0ffd2e3c837a2dacd70e6960ea66555e5d3eb598782b2174deca2d
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QW:CcaClSFlG4ZM7QzMN

Score

7^/10

Malware Config

Targets

- Target
  
  5bb38808d837f44b2516d636f1f726fdf58168ea417d96c52110536b61e5d831
- Size
  
  1.1MB
- MD5
  
  42962ddca5c65d4ab9996c733ce7944e
- SHA1
  
  7bb6e1d0eef7bae2ccded2c0381581187f9f4521
- SHA256
  
  5bb38808d837f44b2516d636f1f726fdf58168ea417d96c52110536b61e5d831
- SHA512
  
  26442a198e3f406c8ee57314a5783965e258d01f909da478470d2def66cdad6a466fc2471e0ffd2e3c837a2dacd70e6960ea66555e5d3eb598782b2174deca2d
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QW:CcaClSFlG4ZM7QzMN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2