107df80017fc551a1a27f11f054b4e8a76cc73532064ca512a19c07f56e0aeb6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

107df80017fc551a1a27f11f054b4e8a76cc73532064ca512a19c07f56e0aeb6
Size

1.1MB
Sample

240418-q2ebbaeg57
MD5

1b3f9301cdb88c64499bdfcaa186bcd9
SHA1

0cc86359a5f8c18bcc5adffb7fae98567bd6f7c1
SHA256

107df80017fc551a1a27f11f054b4e8a76cc73532064ca512a19c07f56e0aeb6
SHA512

1ce39bc6aa6771428b4f9f367bbd35f7a22e33f1fe4c2405b8927a9ba79dd798ee75e4488dc33d8961725f7b2642f6b46755b469cc83fc1ca3765e29dd9e8613
SSDEEP

24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzMq

Score

7^/10

Malware Config

Targets

- Target
  
  107df80017fc551a1a27f11f054b4e8a76cc73532064ca512a19c07f56e0aeb6
- Size
  
  1.1MB
- MD5
  
  1b3f9301cdb88c64499bdfcaa186bcd9
- SHA1
  
  0cc86359a5f8c18bcc5adffb7fae98567bd6f7c1
- SHA256
  
  107df80017fc551a1a27f11f054b4e8a76cc73532064ca512a19c07f56e0aeb6
- SHA512
  
  1ce39bc6aa6771428b4f9f367bbd35f7a22e33f1fe4c2405b8927a9ba79dd798ee75e4488dc33d8961725f7b2642f6b46755b469cc83fc1ca3765e29dd9e8613
- SSDEEP
  
  24576:CH0dl8myX9Bg42QoXFkrzkmmlSgRDko0lG4Z8r7Qfbkiu5Q5:CcaClSFlG4ZM7QzMq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2