c61c92f7e30a3acdf4e91f4390c59d4733b16a6eee844063af220a4af8369fc2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc2afff2ed34b879d62615c1d9ccdab7
Size

2KB
Sample

240309-s1vb9abb75
MD5

bc2afff2ed34b879d62615c1d9ccdab7
SHA1

963109c9e9822b5d846e94b105825252179c354e
SHA256

c61c92f7e30a3acdf4e91f4390c59d4733b16a6eee844063af220a4af8369fc2
SHA512

c9fdff3255c1dabacef78e3fe0ee5c51903751a6ff524ec048040e854922efe9d83703e7757bc176258e0eef2ec0a3d264123b34ad3142e3262489089725dc6e

Score

7^/10

Malware Config

Targets

- Target
  
  bc2afff2ed34b879d62615c1d9ccdab7
- Size
  
  2KB
- MD5
  
  bc2afff2ed34b879d62615c1d9ccdab7
- SHA1
  
  963109c9e9822b5d846e94b105825252179c354e
- SHA256
  
  c61c92f7e30a3acdf4e91f4390c59d4733b16a6eee844063af220a4af8369fc2
- SHA512
  
  c9fdff3255c1dabacef78e3fe0ee5c51903751a6ff524ec048040e854922efe9d83703e7757bc176258e0eef2ec0a3d264123b34ad3142e3262489089725dc6e
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2