574f7e1f54584683d2fe2b125453c43bb3814cb911c3e10d9a9c9fb243570754 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

574f7e1f54584683d2fe2b125453c43bb3814cb911c3e10d9a9c9fb243570754
Size

1.1MB
Sample

240104-pqv91sabd3
MD5

bf898f471472c6d7c9a07246a6f24f3e
SHA1

a1f1820116b09c39dc430b4baab8a62d653e16bb
SHA256

574f7e1f54584683d2fe2b125453c43bb3814cb911c3e10d9a9c9fb243570754
SHA512

af6cceb878b28ae9b616c6cb3309f1b25d3ef15bd32cd2a7bd55378c07fa9609a9b08b64c4909c5a429efe0497dc7baa0bdcffbd3c539f284fe62cc3a80d208c
SSDEEP

24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRc:g5ApamAUAQ/lG4lBmFAvZc

Score

7^/10

Malware Config

Targets

- Target
  
  574f7e1f54584683d2fe2b125453c43bb3814cb911c3e10d9a9c9fb243570754
- Size
  
  1.1MB
- MD5
  
  bf898f471472c6d7c9a07246a6f24f3e
- SHA1
  
  a1f1820116b09c39dc430b4baab8a62d653e16bb
- SHA256
  
  574f7e1f54584683d2fe2b125453c43bb3814cb911c3e10d9a9c9fb243570754
- SHA512
  
  af6cceb878b28ae9b616c6cb3309f1b25d3ef15bd32cd2a7bd55378c07fa9609a9b08b64c4909c5a429efe0497dc7baa0bdcffbd3c539f284fe62cc3a80d208c
- SSDEEP
  
  24576:gRW3N/0f/oAPoRBchI5anfOlAUAi1K6oElG4lBujFAvCyRc:g5ApamAUAQ/lG4lBmFAvZc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2