c1a7d33e6b9694aa57d86b980423ddd877139efbd542f10096fec7609583dc31 | Triage

Sharing

General

Target

c1a7d33e6b9694aa57d86b980423ddd877139efbd542f10096fec7609583dc31
Size

1.1MB
Sample

240308-12grjshg51
MD5

503daa439879c6805cf54a8fcf6a1ece
SHA1

3d38e0d18c2f9fcd0d24cfbc9c31532611bda47e
SHA256

c1a7d33e6b9694aa57d86b980423ddd877139efbd542f10096fec7609583dc31
SHA512

af37f816c8afa8f5bf9ea5f4f022b4dde1d9253a09f3269f2cf3cf1334a2cdc50da768fcc2c4b88246c28e49ab5908a2aa93fec5030599a0531abd276586749b
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q6:CcaClSFlG4ZM7QzMZ

Score

7^/10

Malware Config

Targets

- Target
  
  c1a7d33e6b9694aa57d86b980423ddd877139efbd542f10096fec7609583dc31
- Size
  
  1.1MB
- MD5
  
  503daa439879c6805cf54a8fcf6a1ece
- SHA1
  
  3d38e0d18c2f9fcd0d24cfbc9c31532611bda47e
- SHA256
  
  c1a7d33e6b9694aa57d86b980423ddd877139efbd542f10096fec7609583dc31
- SHA512
  
  af37f816c8afa8f5bf9ea5f4f022b4dde1d9253a09f3269f2cf3cf1334a2cdc50da768fcc2c4b88246c28e49ab5908a2aa93fec5030599a0531abd276586749b
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q6:CcaClSFlG4ZM7QzMZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2