4377d50c2c4942f7e75191d36d2438ee77af80aeb85a0a64b8a85343a12b64d3 | Triage

Sharing

General

Target

4377d50c2c4942f7e75191d36d2438ee77af80aeb85a0a64b8a85343a12b64d3
Size

1.1MB
Sample

240129-hayxmscaf6
MD5

a5804c8bf24c287f5645b3dc5d6db759
SHA1

2ee81bf5868785878044ac2fec05793f4ae970bd
SHA256

4377d50c2c4942f7e75191d36d2438ee77af80aeb85a0a64b8a85343a12b64d3
SHA512

855b8afe6079b214f374c44c2fb3a68679eda21d3646919c5f832d7ad1b5715c34936e7639caeed934a01128eec88110d4b9be8cdf1362e23648f9752e05b362
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Ql:CcaClSFlG4ZM7QzMO

Score

7^/10

Malware Config

Targets

- Target
  
  4377d50c2c4942f7e75191d36d2438ee77af80aeb85a0a64b8a85343a12b64d3
- Size
  
  1.1MB
- MD5
  
  a5804c8bf24c287f5645b3dc5d6db759
- SHA1
  
  2ee81bf5868785878044ac2fec05793f4ae970bd
- SHA256
  
  4377d50c2c4942f7e75191d36d2438ee77af80aeb85a0a64b8a85343a12b64d3
- SHA512
  
  855b8afe6079b214f374c44c2fb3a68679eda21d3646919c5f832d7ad1b5715c34936e7639caeed934a01128eec88110d4b9be8cdf1362e23648f9752e05b362
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Ql:CcaClSFlG4ZM7QzMO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2