14e4ad38d1ca2a0439c5c869485eb49311f02a05fb50152194187f88e7f21cbd | Triage

Sharing

General

Target

5a000864ab41a9c6a448983111de8c5c
Size

626KB
Sample

231226-hc1h9aghf7
MD5

5a000864ab41a9c6a448983111de8c5c
SHA1

3f075a6010e83963cc694283dbc6947b66f3da66
SHA256

14e4ad38d1ca2a0439c5c869485eb49311f02a05fb50152194187f88e7f21cbd
SHA512

c4ab468c19749f0f46ed634e5700f8514ce869e559281b78e5a44552acd8ef47ca22aca361eee9fbd0a567257cc457a9da9f729008a0a8926d7668470cc69204
SSDEEP

12288:Q5hAPjSA6vYkziP27JfR4VoH4c7R5UnvRXuUZ+WU+7GQ:Qg+Lw6JWeH4KR5QyDE1

Score

7^/10

Malware Config

Targets

- Target
  
  5a000864ab41a9c6a448983111de8c5c
- Size
  
  626KB
- MD5
  
  5a000864ab41a9c6a448983111de8c5c
- SHA1
  
  3f075a6010e83963cc694283dbc6947b66f3da66
- SHA256
  
  14e4ad38d1ca2a0439c5c869485eb49311f02a05fb50152194187f88e7f21cbd
- SHA512
  
  c4ab468c19749f0f46ed634e5700f8514ce869e559281b78e5a44552acd8ef47ca22aca361eee9fbd0a567257cc457a9da9f729008a0a8926d7668470cc69204
- SSDEEP
  
  12288:Q5hAPjSA6vYkziP27JfR4VoH4c7R5UnvRXuUZ+WU+7GQ:Qg+Lw6JWeH4KR5QyDE1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2