8db1d23bd914fe8699b809cc8712b362d2652d2722a369b1becd225d357329fa | Triage

Sharing

General

Target

01fd51c67226376d259c2ce9c8663602
Size

28KB
Sample

231229-ycngpachcp
MD5

01fd51c67226376d259c2ce9c8663602
SHA1

6c30e532495d8f945f8bda268172037835cf43ae
SHA256

8db1d23bd914fe8699b809cc8712b362d2652d2722a369b1becd225d357329fa
SHA512

53e8291a6ab5190a681ac5ab69ac0301d946bf29b473bce4ddc5c3fe7a567eeee1fd84a7e4bf525908d35d904438b75bdbeb3fb3dd0985d7cad084da22dba494
SSDEEP

768:7h0X8nKQKJDkSmfjgNlPY6mpru8PNca9mYVHMRzL2qO:G8nKQKC1rqxmu6hVHMRHK

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  01fd51c67226376d259c2ce9c8663602
- Size
  
  28KB
- MD5
  
  01fd51c67226376d259c2ce9c8663602
- SHA1
  
  6c30e532495d8f945f8bda268172037835cf43ae
- SHA256
  
  8db1d23bd914fe8699b809cc8712b362d2652d2722a369b1becd225d357329fa
- SHA512
  
  53e8291a6ab5190a681ac5ab69ac0301d946bf29b473bce4ddc5c3fe7a567eeee1fd84a7e4bf525908d35d904438b75bdbeb3fb3dd0985d7cad084da22dba494
- SSDEEP
  
  768:7h0X8nKQKJDkSmfjgNlPY6mpru8PNca9mYVHMRzL2qO:G8nKQKC1rqxmu6hVHMRHK
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2