03cf38fef5f28f30936741fb4cbfe9366a6fe05407f5f095d39d81183e76e3dd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03cf38fef5f28f30936741fb4cbfe9366a6fe05407f5f095d39d81183e76e3dd
Size

40KB
Sample

240309-yjv54sgf62
MD5

8f4a818d911596d6b8a7e1aa78353e38
SHA1

bca9a6dd1543e052c8e03c33166a377d53ef5145
SHA256

03cf38fef5f28f30936741fb4cbfe9366a6fe05407f5f095d39d81183e76e3dd
SHA512

22ec878dec4f6bf2ff1641b33cd5887c2a41e607f61ca9a131cdb4d2aefde3c1bd000a69a06bce079dbf1e8d5d57b47063c453294342a282fbf2fce5a213a234
SSDEEP

768:OmNE8j9eUi9xPP0hZiA5JgENG4svfAiuP6koRi/bX1oZMh:9NFe/zPgiA5JgEE4svgJocDFoZMh

Score

7^/10

Malware Config

Targets

- Target
  
  03cf38fef5f28f30936741fb4cbfe9366a6fe05407f5f095d39d81183e76e3dd
- Size
  
  40KB
- MD5
  
  8f4a818d911596d6b8a7e1aa78353e38
- SHA1
  
  bca9a6dd1543e052c8e03c33166a377d53ef5145
- SHA256
  
  03cf38fef5f28f30936741fb4cbfe9366a6fe05407f5f095d39d81183e76e3dd
- SHA512
  
  22ec878dec4f6bf2ff1641b33cd5887c2a41e607f61ca9a131cdb4d2aefde3c1bd000a69a06bce079dbf1e8d5d57b47063c453294342a282fbf2fce5a213a234
- SSDEEP
  
  768:OmNE8j9eUi9xPP0hZiA5JgENG4svfAiuP6koRi/bX1oZMh:9NFe/zPgiA5JgEE4svgJocDFoZMh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2