59642e42bcae6a426b7d68bb5192c8bc07d1d1a88b511afd0fb52c9bda78c57f | Triage

Sharing

General

Target

0e86bb71990b959fafb6622b61c634cb
Size

63KB
Sample

231224-ygbcxsfbh3
MD5

0e86bb71990b959fafb6622b61c634cb
SHA1

9bcf0cf4818fb4d40dbdcb6e7a25e69afea1b5c2
SHA256

59642e42bcae6a426b7d68bb5192c8bc07d1d1a88b511afd0fb52c9bda78c57f
SHA512

0405cda45ac47fa28241336673f7cab5734fb1e74e7176051f715070641cbc86072d968c17f600259d8367f7df90606b370bec232ad4dd309eef197708241741
SSDEEP

1536:V3cpyORJLuB4P4AJJv4Romu/4awlmhpUljMg:V3c1fP4AJJv45n7jMg

Score

7^/10

Malware Config

Targets

- Target
  
  0e86bb71990b959fafb6622b61c634cb
- Size
  
  63KB
- MD5
  
  0e86bb71990b959fafb6622b61c634cb
- SHA1
  
  9bcf0cf4818fb4d40dbdcb6e7a25e69afea1b5c2
- SHA256
  
  59642e42bcae6a426b7d68bb5192c8bc07d1d1a88b511afd0fb52c9bda78c57f
- SHA512
  
  0405cda45ac47fa28241336673f7cab5734fb1e74e7176051f715070641cbc86072d968c17f600259d8367f7df90606b370bec232ad4dd309eef197708241741
- SSDEEP
  
  1536:V3cpyORJLuB4P4AJJv4Romu/4awlmhpUljMg:V3c1fP4AJJv45n7jMg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2