acc089ecf796fecc3b21f5de9aa052c721c657de34370dbc830eb6729f9ff4a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

01c9eecc1980b517f3a9c97bec57a459
Size

264KB
Sample

231229-x8ec8abedm
MD5

01c9eecc1980b517f3a9c97bec57a459
SHA1

b31690e382408b699e4bcdff0a23a460994332d6
SHA256

acc089ecf796fecc3b21f5de9aa052c721c657de34370dbc830eb6729f9ff4a7
SHA512

dee870eaf40775b7bb3892d3a2ae19205fb94648f3e7c242472bd9d8d28ab02a7c303d06ebcc85c7d52fd8a0f41962583da65c8912ddfb0b042e5be34e414b4e
SSDEEP

3072:ZYUb5QoJ4g+Ri+Zj6Iz1ZdW4SrO7FSVpu15U:ZY7xh6SZI4z7FSVpuY

Score

7^/10

Malware Config

Targets

- Target
  
  01c9eecc1980b517f3a9c97bec57a459
- Size
  
  264KB
- MD5
  
  01c9eecc1980b517f3a9c97bec57a459
- SHA1
  
  b31690e382408b699e4bcdff0a23a460994332d6
- SHA256
  
  acc089ecf796fecc3b21f5de9aa052c721c657de34370dbc830eb6729f9ff4a7
- SHA512
  
  dee870eaf40775b7bb3892d3a2ae19205fb94648f3e7c242472bd9d8d28ab02a7c303d06ebcc85c7d52fd8a0f41962583da65c8912ddfb0b042e5be34e414b4e
- SSDEEP
  
  3072:ZYUb5QoJ4g+Ri+Zj6Iz1ZdW4SrO7FSVpu15U:ZY7xh6SZI4z7FSVpuY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2