93c1fc1e22baa39160d67bbb5b2cf4205757ae651b96ec59193c9070fe0411a3 | Triage

Sharing

General

Target

93c1fc1e22baa39160d67bbb5b2cf4205757ae651b96ec59193c9070fe0411a3
Size

12KB
Sample

240319-2lpmwsac5x
MD5

835dd4a0f7c36f148e6736905de16eff
SHA1

6345c0f8d3306e96e0fbc74a9fbe438abb8e2420
SHA256

93c1fc1e22baa39160d67bbb5b2cf4205757ae651b96ec59193c9070fe0411a3
SHA512

61d7f02b7fca63c6ce2609ca2dcbf5bd4ea502ffe9135da11ea4a4376581436ac7909dc928f8ef849692efdd9c0705c1f7ac38a85f64e54419f7328d24c62bbf
SSDEEP

384:bL7li/2zDq2DcEQvdhcJKLTp/NK9xaRuc/:PHM/Q9cZ/

Score

7^/10

Malware Config

Targets

- Target
  
  93c1fc1e22baa39160d67bbb5b2cf4205757ae651b96ec59193c9070fe0411a3
- Size
  
  12KB
- MD5
  
  835dd4a0f7c36f148e6736905de16eff
- SHA1
  
  6345c0f8d3306e96e0fbc74a9fbe438abb8e2420
- SHA256
  
  93c1fc1e22baa39160d67bbb5b2cf4205757ae651b96ec59193c9070fe0411a3
- SHA512
  
  61d7f02b7fca63c6ce2609ca2dcbf5bd4ea502ffe9135da11ea4a4376581436ac7909dc928f8ef849692efdd9c0705c1f7ac38a85f64e54419f7328d24c62bbf
- SSDEEP
  
  384:bL7li/2zDq2DcEQvdhcJKLTp/NK9xaRuc/:PHM/Q9cZ/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2