ab63a4041a2b34466db938f0ca67d99f88467e7e42683e56d56fce7de43f1fa5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6fdbc464005acce3acb7740bcd7bb295
Size

420KB
Sample

240122-vsktysbaaj
MD5

6fdbc464005acce3acb7740bcd7bb295
SHA1

b4326d8ca0d9856e1e7b228fc4d3162e558b3dc9
SHA256

ab63a4041a2b34466db938f0ca67d99f88467e7e42683e56d56fce7de43f1fa5
SHA512

115fb185ed7043409eb23e7da55c89ee79ef48ff05d52f21e000b07dbc2cddd23f9bfb0ceb573f63877b10a341fa299c41771d75309f6a47295c0790a86ed408
SSDEEP

6144:kp5dr47s3b+TcsrxReV3dAS9w9h7VqZZ39TwGPqyKIDSFhfliz:k/drd3CTcuyASa9h52Z39UyKI4fl

Score

7^/10

Malware Config

Targets

- Target
  
  6fdbc464005acce3acb7740bcd7bb295
- Size
  
  420KB
- MD5
  
  6fdbc464005acce3acb7740bcd7bb295
- SHA1
  
  b4326d8ca0d9856e1e7b228fc4d3162e558b3dc9
- SHA256
  
  ab63a4041a2b34466db938f0ca67d99f88467e7e42683e56d56fce7de43f1fa5
- SHA512
  
  115fb185ed7043409eb23e7da55c89ee79ef48ff05d52f21e000b07dbc2cddd23f9bfb0ceb573f63877b10a341fa299c41771d75309f6a47295c0790a86ed408
- SSDEEP
  
  6144:kp5dr47s3b+TcsrxReV3dAS9w9h7VqZZ39TwGPqyKIDSFhfliz:k/drd3CTcuyASa9h52Z39UyKI4fl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2