882459fb825fd97543f2cff0110e7fa1c716efc2b47d0ef84c3bdc5ac31c6982 | Triage

Sharing

General

Target

49383a314b93ec21c9fc0d5f4d592fa6
Size

36KB
Sample

240107-rsa3zaghhm
MD5

49383a314b93ec21c9fc0d5f4d592fa6
SHA1

b056c2f65c85ce70ead1be288eb122896e53999c
SHA256

882459fb825fd97543f2cff0110e7fa1c716efc2b47d0ef84c3bdc5ac31c6982
SHA512

1c804af2c551250a286b0294965cbeb0ff46ccc0a4f59bbc3f8cb6c5ee75fdafeb42d09188208d61ff6d96919f26154ec2d62bb76dca59407b4e0ca0f3b3a63c
SSDEEP

768:MX7tjZBRJdd0cuDUBbMn0Jbjj46Peu/W:MXtNd0cu+Mn0Jbjj469W

Score

7^/10

Malware Config

Targets

- Target
  
  49383a314b93ec21c9fc0d5f4d592fa6
- Size
  
  36KB
- MD5
  
  49383a314b93ec21c9fc0d5f4d592fa6
- SHA1
  
  b056c2f65c85ce70ead1be288eb122896e53999c
- SHA256
  
  882459fb825fd97543f2cff0110e7fa1c716efc2b47d0ef84c3bdc5ac31c6982
- SHA512
  
  1c804af2c551250a286b0294965cbeb0ff46ccc0a4f59bbc3f8cb6c5ee75fdafeb42d09188208d61ff6d96919f26154ec2d62bb76dca59407b4e0ca0f3b3a63c
- SSDEEP
  
  768:MX7tjZBRJdd0cuDUBbMn0Jbjj46Peu/W:MXtNd0cu+Mn0Jbjj469W
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2