7eb4e41316b48a2a5369b208f3fef778c5c21473d0d4e3adc8fd0c987a30fe99 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2c3746fd746c89c71ee4b110b529aae
Size

9KB
Sample

240224-z2s9xaef82
MD5

a2c3746fd746c89c71ee4b110b529aae
SHA1

28dcba64a4370f686aee3432d3dc98a0e7d163e6
SHA256

7eb4e41316b48a2a5369b208f3fef778c5c21473d0d4e3adc8fd0c987a30fe99
SHA512

f8905298bba32fc543df960090ae395892b987922193103266d8f2d3399b99af16f93804e2d7f3673b450e7913dcef018b140573ef94400247f95972bf8f9331
SSDEEP

192:lPULqR9uAMpun8j26F/clxTeu8qybNhF1zv9QWfKE1YbS/FeDrNLXw3gWw:JzR73n8PFczeu8qybNx+K1YbStenJXwY

Score

7^/10

Malware Config

Targets

- Target
  
  a2c3746fd746c89c71ee4b110b529aae
- Size
  
  9KB
- MD5
  
  a2c3746fd746c89c71ee4b110b529aae
- SHA1
  
  28dcba64a4370f686aee3432d3dc98a0e7d163e6
- SHA256
  
  7eb4e41316b48a2a5369b208f3fef778c5c21473d0d4e3adc8fd0c987a30fe99
- SHA512
  
  f8905298bba32fc543df960090ae395892b987922193103266d8f2d3399b99af16f93804e2d7f3673b450e7913dcef018b140573ef94400247f95972bf8f9331
- SSDEEP
  
  192:lPULqR9uAMpun8j26F/clxTeu8qybNhF1zv9QWfKE1YbS/FeDrNLXw3gWw:JzR73n8PFczeu8qybNx+K1YbStenJXwY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2