75f5536ff0fee5d572f641852cf2b4d20d71be58e60ee762d21d05b888c1fac7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ccd65b6e31ecc0c9f9016d02959afd0a
Size

104KB
Sample

240316-cjqpqsba89
MD5

ccd65b6e31ecc0c9f9016d02959afd0a
SHA1

75b6bfdd6ace2511a3e14ef34867e1710f454be2
SHA256

75f5536ff0fee5d572f641852cf2b4d20d71be58e60ee762d21d05b888c1fac7
SHA512

f1dce1ce7aeb6b8f85bb3d902a9f9a5f9fd0409bd30b0d352c58d45272c3ffa948eee7032689bdd0276c11ba05ae0600fa42bd38c811b768ed555dc8c3f503aa
SSDEEP

1536:S6HGhwSsky22UJ826eeJo5FRfW5RWTiXJ3j++PObnJTA5:S6HGhGkckeJoFfYWTiXJ3i+AnJ

Score

7^/10

Malware Config

Targets

- Target
  
  ccd65b6e31ecc0c9f9016d02959afd0a
- Size
  
  104KB
- MD5
  
  ccd65b6e31ecc0c9f9016d02959afd0a
- SHA1
  
  75b6bfdd6ace2511a3e14ef34867e1710f454be2
- SHA256
  
  75f5536ff0fee5d572f641852cf2b4d20d71be58e60ee762d21d05b888c1fac7
- SHA512
  
  f1dce1ce7aeb6b8f85bb3d902a9f9a5f9fd0409bd30b0d352c58d45272c3ffa948eee7032689bdd0276c11ba05ae0600fa42bd38c811b768ed555dc8c3f503aa
- SSDEEP
  
  1536:S6HGhwSsky22UJ826eeJo5FRfW5RWTiXJ3j++PObnJTA5:S6HGhGkckeJoFfYWTiXJ3i+AnJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2