43c794f124ae4ec6e85cd828af00470301c0bbed2e76fc63b95177a7010f0abb | Triage

Sharing

General

Target

43c794f124ae4ec6e85cd828af00470301c0bbed2e76fc63b95177a7010f0abb
Size

197KB
Sample

240416-bg3qvafb8w
MD5

1f713539b5dbfdf2ef5b0620806af6ee
SHA1

a1b82c2f270bef7afd1fc2e5d102832695d06be1
SHA256

43c794f124ae4ec6e85cd828af00470301c0bbed2e76fc63b95177a7010f0abb
SHA512

ede9a0fa39da67d7116da9e207807b5bc893a975621e39bb600fc4dac8025ce4ac2faccaf0b98723a3f09050db55dc2498a89ecb203dbd24e5b4bc6f9139bb87
SSDEEP

6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOJ:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX4

Score

7^/10

Malware Config

Targets

- Target
  
  43c794f124ae4ec6e85cd828af00470301c0bbed2e76fc63b95177a7010f0abb
- Size
  
  197KB
- MD5
  
  1f713539b5dbfdf2ef5b0620806af6ee
- SHA1
  
  a1b82c2f270bef7afd1fc2e5d102832695d06be1
- SHA256
  
  43c794f124ae4ec6e85cd828af00470301c0bbed2e76fc63b95177a7010f0abb
- SHA512
  
  ede9a0fa39da67d7116da9e207807b5bc893a975621e39bb600fc4dac8025ce4ac2faccaf0b98723a3f09050db55dc2498a89ecb203dbd24e5b4bc6f9139bb87
- SSDEEP
  
  6144:rBs27MMLyX5HXXXDTXXXOGqIII+pXXX5AYjKXXXDoXXXG6XXXxXXXLIIIEAkOCOJ:rK20HXXX/XXXFqIIIcXXX5j2XXXcXXX4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2