7ded451ef92fc98db4a8c43348dc394b281401a0a75a6ab350994ea440f1f15d | Triage

Sharing

General

Target

7ded451ef92fc98db4a8c43348dc394b281401a0a75a6ab350994ea440f1f15d
Size

1.1MB
Sample

231225-nqb1psdhhr
MD5

e3af35365329b6ea7f4e59d6d8d2605d
SHA1

61deea2ee4fbeac8c6795cf0a1d4d9091002f30e
SHA256

7ded451ef92fc98db4a8c43348dc394b281401a0a75a6ab350994ea440f1f15d
SHA512

486c0794d566ac900fc0bb3a5dd27002a50ca22ae41d4b35cb41b0b46cd5cf554712f954f1c7878e6ddc7b9dabac760c2c9cb09719acd8474606eec91f7522a7
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QS:CcaClSFlG4ZM7QzMh

Score

7^/10

Malware Config

Targets

- Target
  
  7ded451ef92fc98db4a8c43348dc394b281401a0a75a6ab350994ea440f1f15d
- Size
  
  1.1MB
- MD5
  
  e3af35365329b6ea7f4e59d6d8d2605d
- SHA1
  
  61deea2ee4fbeac8c6795cf0a1d4d9091002f30e
- SHA256
  
  7ded451ef92fc98db4a8c43348dc394b281401a0a75a6ab350994ea440f1f15d
- SHA512
  
  486c0794d566ac900fc0bb3a5dd27002a50ca22ae41d4b35cb41b0b46cd5cf554712f954f1c7878e6ddc7b9dabac760c2c9cb09719acd8474606eec91f7522a7
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5QS:CcaClSFlG4ZM7QzMh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2