2baec2539d765d019375fc916ef6f69cd36050090ba684be11648955c238f2a4 | Triage

Sharing

General

Target

27ceff9ed57c460fdd7bf0f91e24d10e
Size

4.2MB
Sample

231219-pz2s6aghd8
MD5

27ceff9ed57c460fdd7bf0f91e24d10e
SHA1

87fc75a405826e5ccbc55fc05226be6277b51357
SHA256

2baec2539d765d019375fc916ef6f69cd36050090ba684be11648955c238f2a4
SHA512

dcbc84dac00bae370baa535e123b089d82b985319417ff44e09d3902e374bdf2ef459d4c407a6c7fb0b7476fcfcd73d13f3150c453bb5d393d3d88182f3bb25f
SSDEEP

98304:oXB4uluJRmMg6QWlIpgi0rHqsih/mCqJ4B4ulus:ovsJR0TW6yiIKRhzqOss

Score

7^/10

Malware Config

Targets

- Target
  
  27ceff9ed57c460fdd7bf0f91e24d10e
- Size
  
  4.2MB
- MD5
  
  27ceff9ed57c460fdd7bf0f91e24d10e
- SHA1
  
  87fc75a405826e5ccbc55fc05226be6277b51357
- SHA256
  
  2baec2539d765d019375fc916ef6f69cd36050090ba684be11648955c238f2a4
- SHA512
  
  dcbc84dac00bae370baa535e123b089d82b985319417ff44e09d3902e374bdf2ef459d4c407a6c7fb0b7476fcfcd73d13f3150c453bb5d393d3d88182f3bb25f
- SSDEEP
  
  98304:oXB4uluJRmMg6QWlIpgi0rHqsih/mCqJ4B4ulus:ovsJR0TW6yiIKRhzqOss
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2