f94384b045b2e37524cf41616c2a4110bba6584a683392dde32c531f6379ecf9 | Triage

Sharing

General

Target

0f2b296cbeae467ea94008b8d716f89b
Size

369KB
Sample

231225-jeb44schhp
MD5

0f2b296cbeae467ea94008b8d716f89b
SHA1

91d007c0f22ca73c548b06efae318bcb5e251b70
SHA256

f94384b045b2e37524cf41616c2a4110bba6584a683392dde32c531f6379ecf9
SHA512

bfaa1d6c097c3b6a6cbcf50c8fba24031f289ffd3f675e3b582efc73ce4d1d9d30c9bfc34a1843dad54bd863c30f23a7be770a9029b8a1bf35cbb77afe3dc350
SSDEEP

3072:LEGsB3qIzYgdbWqsicQP0P56Tb5Ev8AozjtA2e1:LEGGqeYqDVRb5HpA2e1

Score

7^/10

Malware Config

Targets

- Target
  
  0f2b296cbeae467ea94008b8d716f89b
- Size
  
  369KB
- MD5
  
  0f2b296cbeae467ea94008b8d716f89b
- SHA1
  
  91d007c0f22ca73c548b06efae318bcb5e251b70
- SHA256
  
  f94384b045b2e37524cf41616c2a4110bba6584a683392dde32c531f6379ecf9
- SHA512
  
  bfaa1d6c097c3b6a6cbcf50c8fba24031f289ffd3f675e3b582efc73ce4d1d9d30c9bfc34a1843dad54bd863c30f23a7be770a9029b8a1bf35cbb77afe3dc350
- SSDEEP
  
  3072:LEGsB3qIzYgdbWqsicQP0P56Tb5Ev8AozjtA2e1:LEGGqeYqDVRb5HpA2e1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2