8c914f47bf2616f38329e1e6366086c8cc3d2feddf69a1afa66194455d2bf816 | Triage

Sharing

General

Target

d3c4013a9bdaeee02ef2bf097a88085b
Size

380KB
Sample

240318-r3jg4abc45
MD5

d3c4013a9bdaeee02ef2bf097a88085b
SHA1

55a9df1d6ccc19fd0b6e59b3c6803016b8039c4b
SHA256

8c914f47bf2616f38329e1e6366086c8cc3d2feddf69a1afa66194455d2bf816
SHA512

6e912591c4d2dc67d4f19f0e47135d89b956135abb9bada088678083a8dfc2d6a2d8b9dbf0f4521d95c16406706d82c2561fbc858d1a925a862479213af1d47d
SSDEEP

6144:Qj2g815mgXmiqqLc8UIjP2h64VJRL1AtE0Z6j5GVlWcKCHTsYzJG8wPOIbsQgml:tgE8gWiM8UITV4VJ5VjCHTnGpPPxgml

Score

7^/10

Malware Config

Targets

- Target
  
  d3c4013a9bdaeee02ef2bf097a88085b
- Size
  
  380KB
- MD5
  
  d3c4013a9bdaeee02ef2bf097a88085b
- SHA1
  
  55a9df1d6ccc19fd0b6e59b3c6803016b8039c4b
- SHA256
  
  8c914f47bf2616f38329e1e6366086c8cc3d2feddf69a1afa66194455d2bf816
- SHA512
  
  6e912591c4d2dc67d4f19f0e47135d89b956135abb9bada088678083a8dfc2d6a2d8b9dbf0f4521d95c16406706d82c2561fbc858d1a925a862479213af1d47d
- SSDEEP
  
  6144:Qj2g815mgXmiqqLc8UIjP2h64VJRL1AtE0Z6j5GVlWcKCHTsYzJG8wPOIbsQgml:tgE8gWiM8UITV4VJ5VjCHTnGpPPxgml
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2